magic_rb/dotfiles
1
0
Fork 0
mirror of https://git.sr.ht/~magic_rb/dotfiles synced 2024-11-29 11:36:16 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add another Wireguard to toothpick

Browse source 
Signed-off-by: main <magic_rb@redalder.org>
This commit is contained in:
main 2022-02-22 09:49:22 +01:00
parent ea793f3397
commit 99df53b3ee
No known key found for this signature in database
GPG key ID: 08D5287CC5DDCA0E
1 changed files with 15 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
nix/systems/toothpick.nix
View file

@ -43,7 +43,6 @@ inputs: {
enableDocker = false;
dropPrivileges = false;
package = config.magic_rb.pkgs.nixpkgs-master.nomad_1_1;
extraPackages = with pkgs; [ consul glibc ];
extraSettingsPaths = [ "/var/secrets/nomad.hcl" ];
@ -355,13 +354,23 @@ inputs: {
interfaces."wg0" =
{
postSetup = ''
${pkgs.iptables}/bin/iptables -I FORWARD -i wg0 -o wg0 -j ACCEPT
'';
${pkgs.iptables}/bin/iptables -I FORWARD -i wg0 -o wg0 -j ACCEPT
'';
postShutdown = ''
${pkgs.iptables}/bin/iptables -D FORWARD -i wg0 -o wg0 -j ACCEPT
'';
${pkgs.iptables}/bin/iptables -D FORWARD -i wg0 -o wg0 -j ACCEPT
'';
} // config.magic_rb.secret.wireguard."toothpick";
interfaces."wg1" =
{
postSetup = ''
'';
postShutdown = ''
'';
} // config.magic_rb.secret.wireguard."toothpick-matej";
};
defaultGateway = "64.225.96.1";
@ -384,6 +393,7 @@ inputs: {
];
allowedUDPPorts =
[ 6666
6668
];
};