Commit `5ed6ef004fca`

Vincent Demeester <vincent@sbr.pm>

2018-10-11 08:58:32

honshu: remove ssh-tunnel, add wireguard

Signed-off-by: Vincent Demeester <vincent@sbr.pm>

main

1 parent 68df17e

Changed files (1)

machine

honshu.nix

@@ -11,7 +11,8 @@
     ../profiles/avahi.nix
     ../profiles/containerd.nix
     ../profiles/syncthing.nix
-    ../service/ssh-tunnel.nix
+    ../profiles/wireguard.nix
+    ../service/wireguard.client.nix
     ../location/home.nix
   ];
 
@@ -19,14 +20,13 @@
 
   services = {
     logind.extraConfig = "HandleLidSwitch=ignore";
-    ssh-tunnel = {
-      enable = true;
-      localUser = "vincent";
-      remoteHostname = "95.85.58.158";
-      remotePort = 22;
-      remoteUser = "vincent";
-      bindPort = 2224;
-    };
+  };
+  services.wireguard = with import ../assets/wireguard.nix; {
+    enable = true;
+    ips = [ "${ips.honshu}/24" ];
+    endpoint = main.endpointIP;
+    endpointPort = main.listenPort;
+    endpointPublicKey = kerkouane.publicKey;
   };
 
   environment.etc."vrsync".text = ''

Commit 5ed6ef004fca

Commit `5ed6ef004fca`