blake/nix
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

101 current 2025-10-08 16:41:36 25.05.20251006.20c4598 6.12.50 *

Browse Source
This commit is contained in:
blake
2025-10-08 16:48:26 -05:00
parent 299a8fc435
commit abc2a0579c
2 changed files with 13 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
flake.nix
View File

@@ -1,6 +1,6 @@
# flake for blakes nixos config # flake for blakes nixos config
# define new devices in outputs # define new devices in outputs
# generation: 100 current 2025-10-08 16:24:55 25.05.20251006.20c4598 6.12.50 * # generation: 101 current 2025-10-08 16:41:36 25.05.20251006.20c4598 6.12.50 *
{ {
description = "blakes nix config"; description = "blakes nix config";
inputs = { inputs = {

23
modules/system/vpns.nix
View File

@@ -37,6 +37,7 @@ in
networking.wg-quick.interfaces = lib.mkIf cfg.wg_mex { networking.wg-quick.interfaces = lib.mkIf cfg.wg_mex {
wg_mex = { wg_mex = {
# client settings # client settings
table = 51820;
privateKeyFile = config.sops.secrets."wg_mex_key".path; privateKeyFile = config.sops.secrets."wg_mex_key".path;
address = [ "10.74.252.231/32" "fc00:bbbb:bbbb:bb01::b:fce6/128" ]; address = [ "10.74.252.231/32" "fc00:bbbb:bbbb:bb01::b:fce6/128" ];
dns = [ "10.64.0.1" ]; dns = [ "10.64.0.1" ];
@@ -47,17 +48,17 @@ in
endpoint = "149.88.22.129:51820"; endpoint = "149.88.22.129:51820";
persistentKeepalive = 25; persistentKeepalive = 25;
} ]; } ];
postUp = '' # postUp = ''
ip rule add fwmark 0xca6c table 51820 # ip rule add fwmark 0xca6c table 51820
ip route add default dev wg_mex table 51820 # ip route add default dev wg_mex table 51820
ip route add 10.10.0.0/24 dev enp89s0 table 51820 # ip route add 10.10.0.0/24 dev enp89s0 table 51820
''; # '';
#
postDown = '' # postDown = ''
ip rule delete fwmark 0xca6c table 51820 # ip rule delete fwmark 0xca6c table 51820
ip route flush table 51820 # ip route flush table 51820
#
''; # '';
}; };
}; };