jonas/.hive
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

System Gen194 @ 2025-05-14-00:45:09 by jonas@comfy-station

Browse Source
This commit is contained in:
Jonas Röger 2025-05-14 00:48:41 +02:00
parent 4a60a88fbe
commit 7d5e47cfdf
1 changed files with 11 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
modules/networking/wireguard/server.nix
View File

@ -1,6 +1,7 @@
{ {
config, config,
lib, lib,
pkgs,
... ...
}: let }: let
cfg = config.hive.wg.server; cfg = config.hive.wg.server;
@ -27,10 +28,19 @@ in {
networking.wireguard.interfaces."wg0" = { networking.wireguard.interfaces."wg0" = {
ips = ["10.10.10.1/24"]; ips = ["10.10.10.1/24"];
listenPort = cfg.port; listenPort = cfg.port;
inherit (cfg) privateKeyFile; inherit (cfg) privateKeyFile;
peers = peers.forServer; peers = peers.forServer;
# Allow p2p traffic
postSetup = ''
${pkgs.iptables}/bin/iptables -A FORWARD -i wg0 -o wg0 -j ACCEPT
'';
# Undo the above
postShutdown = ''
${pkgs.iptables}/bin/iptables -D FORWARD -i wg0 -o wg0 -j ACCEPT
'';
}; };
}; };
} }