dotfiles/nixos/systems/gooseberry/networking.nix
magic_rb 5eebc07e25
Enable wireguard on gooseberry
Signed-off-by: magic_rb <magic_rb@redalder.org>
2024-05-09 18:11:11 +02:00

34 lines
636 B
Nix

{
pkgs,
lib,
secret,
...
}: let
in {
networking = {
hostName = "gooseberry";
useDHCP = false;
interfaces.eth0.useDHCP = true;
firewall = {
enable = true;
allowedUDPPorts = [
6666
];
};
interfaces."eth1".ipv4.addresses = [
{
address = secret.network.ips.gooseberry.ipmi or "";
prefixLength = 30;
}
];
wireguard.interfaces."wg0" =
secret.wireguard."gooseberry" or {privateKey = "";};
};
services.udev.extraRules = ''
ATTR{address}=="b8:27:eb:ef:f4:c3", NAME="eth0"
ATTR{address}=="c8:4d:44:21:27:17", NAME="eth1"
'';
}