diff options
author | Gregor Kleen <gkleen@yggdrasil.li> | 2021-10-17 23:01:02 +0200 |
---|---|---|
committer | Gregor Kleen <gkleen@yggdrasil.li> | 2021-10-17 23:01:02 +0200 |
commit | bd5a96e1681d3bc677da38ea3294dbfafac9d4eb (patch) | |
tree | 9cdea577113a186d9af5cd116da13b3b5515ee78 | |
parent | a79b87b0224cdd0069cbd4d3534475ee3f04dbf9 (diff) | |
download | nixos-bd5a96e1681d3bc677da38ea3294dbfafac9d4eb.tar nixos-bd5a96e1681d3bc677da38ea3294dbfafac9d4eb.tar.gz nixos-bd5a96e1681d3bc677da38ea3294dbfafac9d4eb.tar.bz2 nixos-bd5a96e1681d3bc677da38ea3294dbfafac9d4eb.tar.xz nixos-bd5a96e1681d3bc677da38ea3294dbfafac9d4eb.zip |
yggdrasil-wg: ...
-rw-r--r-- | modules/yggdrasil-wg/default.nix | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/modules/yggdrasil-wg/default.nix b/modules/yggdrasil-wg/default.nix index 3d9da305..316371ea 100644 --- a/modules/yggdrasil-wg/default.nix +++ b/modules/yggdrasil-wg/default.nix | |||
@@ -70,11 +70,12 @@ let | |||
70 | netdevConfig = { | 70 | netdevConfig = { |
71 | Name = "yggre-${other}"; | 71 | Name = "yggre-${other}"; |
72 | Kind = "ip6gretap"; | 72 | Kind = "ip6gretap"; |
73 | MTUBytes = toString (1280 + 32); | 73 | MTUBytes = toString (1280 + 58); |
74 | }; | 74 | }; |
75 | tunnelConfig = { | 75 | tunnelConfig = { |
76 | Local = stripSubnet wgHostIPs.${hostName}; | 76 | Local = stripSubnet wgHostIPs.${hostName}; |
77 | Remote = stripSubnet wgHostIPs.${other}; | 77 | Remote = stripSubnet wgHostIPs.${other}; |
78 | DiscoverPathMTU = false; | ||
78 | }; | 79 | }; |
79 | }; | 80 | }; |
80 | linkToGreNetwork = ix: opts@{from, to, ...}: | 81 | linkToGreNetwork = ix: opts@{from, to, ...}: |
@@ -122,7 +123,7 @@ in { | |||
122 | netdevConfig = { | 123 | netdevConfig = { |
123 | Name = "yggdrasil-wg"; | 124 | Name = "yggdrasil-wg"; |
124 | Kind = "wireguard"; | 125 | Kind = "wireguard"; |
125 | MTUBytes = toString (1280 + 32 + 70); | 126 | MTUBytes = toString (1280 + 58 + 70); |
126 | }; | 127 | }; |
127 | wireguardConfig = { | 128 | wireguardConfig = { |
128 | PrivateKeyFile = config.sops.secrets."yggdrasil-wg.priv".path; | 129 | PrivateKeyFile = config.sops.secrets."yggdrasil-wg.priv".path; |