Commit b17be089cffa

Vincent Demeester <vincent@sbr.pm>
2018-10-17 14:53:20
kerkouane: chane ssh port and fix wg
Signed-off-by: Vincent Demeester <vincent@sbr.pm>
main
1 parent 48e147a
Changed files (2)
machine
kerkouane.nix
profiles
wireguard.server.nix
machine/kerkouane.nix
@@ -9,8 +9,10 @@
   ];
 
   boot.cleanTmpDir = true;
+  boot.loader.grub.enable = true;
   networking.firewall.allowPing = true;
   services.openssh.enable = true;
+  services.openssh.ports = with import ../assets/machines.nix; [ ssh.kerkouane.port ];
   programs.fish.enable = true;
   users.users.root.openssh.authorizedKeys.keys = [
     "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGR4dqXwHwPpYgyk6yl9+9LRL3qrBZp3ZWdyKaTiXp0p vincent@shikoku"
profiles/wireguard.server.nix
@@ -10,7 +10,7 @@
   networking.firewall.allowedUDPPorts = [ 51820 ];
   networking.wireguard.interfaces = with import ../assets/machines.nix; {
     "wg0" = {
-      ips = wg.allowedIPs;
+      ips = wireguard.kerkouane.allowedIPs;
       listenPort = wg.listenPort;
       privateKeyFile = "/etc/nixos/wireguard.private.key";
       peers = wg.peers;