fi/nix-infra
1
1
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity

Change mail-1 wireguard port as it is already used for STS setup

Browse source
This commit is contained in:
yuri 2023-09-18 03:05:53 +02:00
parent b359ec8644
commit e0d1e17bbb
2 changed files with 4 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
config/hosts/mail-1/configuration.nix
View file

@ -1,4 +1,4 @@
{ ... }: { hosts, ... }:
{ {
boot.loader.grub = { boot.loader.grub = {
enable = true; enable = true;
@ -47,7 +47,7 @@
name = "valkyrie"; name = "valkyrie";
publicKey = "ik480irMZtGBs1AFpf1KGzDBekjdziD3ck7XK8r1WXQ="; publicKey = "ik480irMZtGBs1AFpf1KGzDBekjdziD3ck7XK8r1WXQ=";
presharedKeyFile = "/secrets/wireguard-valkyrie-mail-1-mail-1-psk.secret"; presharedKeyFile = "/secrets/wireguard-valkyrie-mail-1-mail-1-psk.secret";
endpoint = "212.53.203.19:51821"; endpoint = "212.53.203.19:51822";
allowedIPs = [ "0.0.0.0/0" ]; allowedIPs = [ "0.0.0.0/0" ];
persistentKeepalive = 25; persistentKeepalive = 25;
} }

4
config/hosts/valkyrie/configuration.nix
View file

@ -8,7 +8,7 @@
firewall = { firewall = {
enable = true; enable = true;
allowedTCPPorts = [ 80 443 ]; allowedTCPPorts = [ 80 443 ];
allowedUDPPorts = [ 51820 51821 51827 51828 ]; allowedUDPPorts = [ 51820 51821 51822 51827 51828 ];
}; };
wireguard = { wireguard = {
enable = true; enable = true;
@ -46,7 +46,7 @@
}; };
# mail-1 VPN # mail-1 VPN
wg1 = { wg1 = {
listenPort = 51821; listenPort = 51822;
ips = [ ips = [
"172.16.50.1/24" "172.16.50.1/24"
]; ];