cilly/flakes
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1

system/wireguard: add local-only peer

Browse source
This commit is contained in:
Cilly Leang 2025-08-14 11:18:11 +10:00
parent f140929d9c
commit 1c2f3eb1c6
Signed by: cilly
GPG key ID: 6500251E087653C9
1 changed files with 5 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

6
modules/system/wireguard.nix
View file

@ -28,6 +28,7 @@ let
interfaces = {
wg0 = { peers = [ server6OnlyPeer ]; };
wg1 = { peers = [ serverPeer ]; autostart = false; };
wg2 = { peers = [ serverLocalOnlyPeer ]; autostart = false; };
};
};
anemone = {
@ -36,6 +37,7 @@ let
interfaces = {
wg0 = { peers = [ server6OnlyPeer ]; };
wg1 = { peers = [ serverPeer ]; autostart = false; };
wg2 = { peers = [ serverLocalOnlyPeer ]; autostart = false; };
};
};
hibiscus = {
@ -44,6 +46,7 @@ let
interfaces = {
wg0 = { peers = [ server6OnlyPeer ]; };
wg1 = { peers = [ serverPeer ]; autostart = false; };
wg2 = { peers = [ serverLocalOnlyPeer ]; autostart = false; };
};
};
hazel = {
@ -52,7 +55,7 @@ let
interfaces = {
wg0 = {
dns = [ "::1" "127.0.0.1" ];
peers = [ (serverPeerWith [ "10.100.0.0/24" "fd0d::/16" ]) ];
peers = [ serverLocalOnlyPeer ];
};
};
};
@ -67,6 +70,7 @@ let
};
serverPeer = serverPeerWith [ "0.0.0.0/0" "::/0" ];
server6OnlyPeer = serverPeerWith [ "10.100.0.0/24" "::/0" ];
serverLocalOnlyPeer = serverPeerWith [ "10.100.0.0/24" "fd0d::/16" ];
serverConfig = {
nat = {