Add preshared key to Wireguard
This commit is contained in:
parent
37391cf226
commit
d20bf67a28
2 changed files with 10 additions and 0 deletions
|
@ -56,6 +56,10 @@
|
|||
owner = "root";
|
||||
sopsFile = ../../../secrets/wireguard.yaml;
|
||||
};
|
||||
sops.secrets."wireguard_keys/preshared_key" = {
|
||||
owner = "root";
|
||||
sopsFile = ../../../secrets/wireguard.yaml;
|
||||
};
|
||||
|
||||
# Wireguard Forwarder
|
||||
networking.wireguard = {
|
||||
|
@ -70,6 +74,7 @@
|
|||
persistentKeepalive = 5;
|
||||
allowedIPs = [ "0.0.0.0/0" ];
|
||||
endpoint = "64.176.54.57:51820";
|
||||
presharedKeyFile = "/run/secrets/wireguard_keys/preshared_key";
|
||||
}
|
||||
]
|
||||
};
|
||||
|
|
|
@ -23,6 +23,10 @@
|
|||
owner = "root";
|
||||
sopsFile = ../../../secrets/wireguard.yaml;
|
||||
};
|
||||
sops.secrets."wireguard_keys/preshared_key" = {
|
||||
owner = "root";
|
||||
sopsFile = ../../../secrets/wireguard.yaml;
|
||||
};
|
||||
|
||||
# Wireguard Forwarder
|
||||
boot.kernel.sysctl = { "net.ipv4.ip_forward" = true; };
|
||||
|
@ -41,6 +45,7 @@
|
|||
publicKey = "";
|
||||
allowedIPs = [ "10.100.0.2/32" ];
|
||||
persistentKeepalive = 5;
|
||||
presharedKeyFile = "/run/secrets/wireguard_keys/preshared_key";
|
||||
}
|
||||
];
|
||||
};
|
||||
|
|
Loading…
Reference in a new issue