Change mail-1 wireguard port as it is already used for STS setup
This commit is contained in:
parent
b359ec8644
commit
e0d1e17bbb
2 changed files with 4 additions and 4 deletions
|
|
@ -1,4 +1,4 @@
|
||||||
{ ... }:
|
{ hosts, ... }:
|
||||||
{
|
{
|
||||||
boot.loader.grub = {
|
boot.loader.grub = {
|
||||||
enable = true;
|
enable = true;
|
||||||
|
|
@ -47,7 +47,7 @@
|
||||||
name = "valkyrie";
|
name = "valkyrie";
|
||||||
publicKey = "ik480irMZtGBs1AFpf1KGzDBekjdziD3ck7XK8r1WXQ=";
|
publicKey = "ik480irMZtGBs1AFpf1KGzDBekjdziD3ck7XK8r1WXQ=";
|
||||||
presharedKeyFile = "/secrets/wireguard-valkyrie-mail-1-mail-1-psk.secret";
|
presharedKeyFile = "/secrets/wireguard-valkyrie-mail-1-mail-1-psk.secret";
|
||||||
endpoint = "212.53.203.19:51821";
|
endpoint = "212.53.203.19:51822";
|
||||||
allowedIPs = [ "0.0.0.0/0" ];
|
allowedIPs = [ "0.0.0.0/0" ];
|
||||||
persistentKeepalive = 25;
|
persistentKeepalive = 25;
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -8,7 +8,7 @@
|
||||||
firewall = {
|
firewall = {
|
||||||
enable = true;
|
enable = true;
|
||||||
allowedTCPPorts = [ 80 443 ];
|
allowedTCPPorts = [ 80 443 ];
|
||||||
allowedUDPPorts = [ 51820 51821 51827 51828 ];
|
allowedUDPPorts = [ 51820 51821 51822 51827 51828 ];
|
||||||
};
|
};
|
||||||
wireguard = {
|
wireguard = {
|
||||||
enable = true;
|
enable = true;
|
||||||
|
|
@ -46,7 +46,7 @@
|
||||||
};
|
};
|
||||||
# mail-1 VPN
|
# mail-1 VPN
|
||||||
wg1 = {
|
wg1 = {
|
||||||
listenPort = 51821;
|
listenPort = 51822;
|
||||||
ips = [
|
ips = [
|
||||||
"172.16.50.1/24"
|
"172.16.50.1/24"
|
||||||
];
|
];
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue