magic_rb/dotfiles
1
0
Fork 0
mirror of https://git.sr.ht/~magic_rb/dotfiles synced 2024-11-29 19:46:17 +01:00
Code Issues Packages Projects Releases Wiki Activity
dotfiles/nixos/secret-lib/wireguard.nix
main 3e23308bf3
Fix Wireguard not being brought up after boot due to DNS failure 
Signed-off-by: main <magic_rb@redalder.org>
2022-12-18 22:27:17 +01:00

119 lines
3.2 KiB
Nix
Raw Blame History

# SPDX-FileCopyrightText: 2022 Richard Brežák <richard@brezak.sk>
#
# SPDX-License-Identifier: LGPL-3.0-or-later
{lib, ...}:
with lib; {
options = {
wireguard = mkOption {
description = ''
Wireguard machine specific settings.
'';
type = with types;
attrsOf (
submodule
{
options = {
ips = mkOption {
description = ''
IP addresses.
'';
type = listOf str;
default = [];
};
listenPort = mkOption {
description = ''
Listen port.
'';
type = port;
};
privateKeyFile = mkOption {
description = ''
Path to private key
'';
type = str;
};
postSetup = mkOption {
description = ''
Post setup script.
'';
type = coercedTo (listOf str) (concatStringsSep "\n") lines;
default = "";
};
peers = mkOption {
description = ''
List of peers.
'';
type = listOf (
submodule
{
options = {
publicKey = mkOption {
description = ''
Peer public key.
'';
type = str;
};
allowedIPs = mkOption {
description = ''
Allowed IPs for peer.
'';
type = listOf str;
};
endpoint = mkOption {
description = ''
Peer endpoint.
'';
type = nullOr str;
default = null;
};
persistentKeepalive = mkOption {
description = ''
Persistent keepalive.
'';
type = nullOr int;
default = null;
};
dynamicEndpointRefreshSeconds = mkOption {
description = ''
dynamicEndpointRefreshSeconds.
'';
type = int;
default = 0;
};
};
}
);
default = [];
};
};
}
);
default = {};
example =
literalExample
''
{
heater = {
ips =
[ "stuff" ];
listenPort = 0;
privateKeyFile = "stuff";
peers = [
{ publicKey =
"stuff";
allowedIPs =
[ "stuff"
];
};
];
}
}
'';
};
};
}
Reference in a new issue View git blame Copy permalink