summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorGregor Kleen <gkleen@yggdrasil.li>2021-10-17 23:01:02 +0200
committerGregor Kleen <gkleen@yggdrasil.li>2021-10-17 23:01:02 +0200
commitbd5a96e1681d3bc677da38ea3294dbfafac9d4eb (patch)
tree9cdea577113a186d9af5cd116da13b3b5515ee78
parenta79b87b0224cdd0069cbd4d3534475ee3f04dbf9 (diff)
downloadnixos-bd5a96e1681d3bc677da38ea3294dbfafac9d4eb.tar
nixos-bd5a96e1681d3bc677da38ea3294dbfafac9d4eb.tar.gz
nixos-bd5a96e1681d3bc677da38ea3294dbfafac9d4eb.tar.bz2
nixos-bd5a96e1681d3bc677da38ea3294dbfafac9d4eb.tar.xz
nixos-bd5a96e1681d3bc677da38ea3294dbfafac9d4eb.zip
yggdrasil-wg: ...
-rw-r--r--modules/yggdrasil-wg/default.nix5
1 files changed, 3 insertions, 2 deletions
diff --git a/modules/yggdrasil-wg/default.nix b/modules/yggdrasil-wg/default.nix
index 3d9da305..316371ea 100644
--- a/modules/yggdrasil-wg/default.nix
+++ b/modules/yggdrasil-wg/default.nix
@@ -70,11 +70,12 @@ let
70 netdevConfig = { 70 netdevConfig = {
71 Name = "yggre-${other}"; 71 Name = "yggre-${other}";
72 Kind = "ip6gretap"; 72 Kind = "ip6gretap";
73 MTUBytes = toString (1280 + 32); 73 MTUBytes = toString (1280 + 58);
74 }; 74 };
75 tunnelConfig = { 75 tunnelConfig = {
76 Local = stripSubnet wgHostIPs.${hostName}; 76 Local = stripSubnet wgHostIPs.${hostName};
77 Remote = stripSubnet wgHostIPs.${other}; 77 Remote = stripSubnet wgHostIPs.${other};
78 DiscoverPathMTU = false;
78 }; 79 };
79 }; 80 };
80 linkToGreNetwork = ix: opts@{from, to, ...}: 81 linkToGreNetwork = ix: opts@{from, to, ...}:
@@ -122,7 +123,7 @@ in {
122 netdevConfig = { 123 netdevConfig = {
123 Name = "yggdrasil-wg"; 124 Name = "yggdrasil-wg";
124 Kind = "wireguard"; 125 Kind = "wireguard";
125 MTUBytes = toString (1280 + 32 + 70); 126 MTUBytes = toString (1280 + 58 + 70);
126 }; 127 };
127 wireguardConfig = { 128 wireguardConfig = {
128 PrivateKeyFile = config.sops.secrets."yggdrasil-wg.priv".path; 129 PrivateKeyFile = config.sops.secrets."yggdrasil-wg.priv".path;