m3tam3re/nixos-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

+qdrant +wireguard

Browse Source
This commit is contained in:
m3tam3re
2024-11-14 12:17:43 +01:00
parent ff3d1735c0
commit 0ebf64e7ee
17 changed files with 210 additions and 23 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
hosts/m3-kratos/default.nix
View File

@ -38,6 +38,7 @@
./configuration.nix
./hardware.nix
./programs.nix
./secrets.nix
./services
];

31
hosts/m3-kratos/secrets.nix Normal file
View File

@ -0,0 +1,31 @@
{
age = {
secrets = {
wg-DE = {
file = ../../secrets/wg-DE.age;
path = "/etc/wireguard/DE.conf";
};
wg-NL = {
file = ../../secrets/wg-NL.age;
path = "/etc/wireguard/NL.conf";
};
wg-NO = {
file = ../../secrets/wg-NO.age;
path = "/etc/wireguard/NO.conf";
};
wg-US = {
file = ../../secrets/wg-US.age;
path = "/etc/wireguard/US.conf";
};
wg-BR = {
file = ../../secrets/wg-BR.age;
path = "/etc/wireguard/BR.conf";
};
tailscale-key.file = ../../secrets/tailscale-key.age;
m3tam3re-secrets = {
file = ../../secrets/m3tam3re-secrets.age;
owner = "m3tam3re";
};
};
};
}

2
hosts/m3-kratos/services/default.nix
View File

@ -5,6 +5,7 @@
./postgres.nix
./sound.nix
./udev.nix
./wireguard.nix
];
services = {
hypridle.enable = true;
@ -12,6 +13,7 @@
gvfs.enable = true;
trezord.enable = true;
gnome.gnome-keyring.enable = true;
qdrant.enable = true;
avahi = {
enable = true;
nssmdns4 = true;

25
hosts/m3-kratos/services/wireguard.nix Normal file
View File

@ -0,0 +1,25 @@
{config, ...}: {
networking.wg-quick.interfaces = {
DE = {
configFile = config.age.secrets.wg-DE.path;
autostart = false;
};
NL = {
configFile = config.age.secrets.wg-NL.path;
autostart = false;
};
NO = {
configFile = config.age.secrets.wg-NO.path;
autostart = false;
};
US = {
configFile = config.age.secrets.wg-US.path;
autostart = false;
};
BR = {
configFile = config.age.secrets.wg-BR.path;
autostart = false;
};
};
services.resolved.enable = true;
}