cnst/cnix
1
0
Fork 0
Code Issues Pull Requests Activity

secrets 2

Browse Source
This commit is contained in:
cnst
2025-07-20 15:37:51 +02:00
parent a6607ada81
commit 3fdb907bb4
2 changed files with 3 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
hosts/sobotka/server.nix
View File

@@ -31,7 +31,7 @@
deluge.enable = true;
wireguard-netns = {
enable = true;
namespace = "vpn";
namespace = "vpn2";
configFile = config.age.secrets.wgCredentials.path;
privateIP = "10.68.145.193";
dnsIP = "10.64.0.1";

4
modules/server/wireguard-netns/default.nix
View File

@@ -48,7 +48,7 @@ in {
RemainAfterExit = true;
ExecStart = with pkgs;
writers.writeBash "wg-up" ''
set -eux
set -e
${iproute2}/bin/ip link add wg1 type wireguard
${iproute2}/bin/ip link set wg1 netns ${cfg.namespace}
${iproute2}/bin/ip -n ${cfg.namespace} address add ${cfg.privateIP} dev wg1
@@ -60,7 +60,7 @@ in {
'';
ExecStop = with pkgs;
writers.writeBash "wg-down" ''
set -eux
set -e
${iproute2}/bin/ip -n ${cfg.namespace} route del default dev wg1
${iproute2}/bin/ip -n ${cfg.namespace} link del wg1
'';