yanlin/nix
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add thinkpad to wireguard subnet

Browse source
This commit is contained in:
Yan Lin 2025-09-13 11:39:01 +02:00
parent 8d0753fd0a
commit 85b74e3328
3 changed files with 20 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

14
hosts/nixos/thinkpad/system.nix
View file

@ -1,6 +1,7 @@
{ config, pkgs, lib, ... }: {
imports = [
./hardware-configuration.nix
../../../modules/wireguard.nix
];
# Bootloader - standard UEFI setup
@ -319,6 +320,19 @@
# Apply XKB config to console (TTY) as well
console.useXkbConfig = true;
# WireGuard VPN configuration (ThinkPad as client/spoke)
services.wireguard-custom = {
enable = true;
mode = "client";
privateKeyFile = "/etc/wireguard/thinkpad_private.key";
clientConfig = {
address = "10.2.2.30/24";
serverPublicKey = "46QHjSzAas5g9Hll1SCEu9tbR5owCxXAy6wGOUoPwUM=";
serverEndpoint = "91.98.84.215:51820";
allowedIPs = [ "10.2.2.0/24" ];
};
};
# This value determines the NixOS release from which the default
# settings for stateful data, like file locations and database versions
# on your system were taken.