summaryrefslogtreecommitdiff
path: root/modules/yggdrasil-wg
diff options
context:
space:
mode:
authorGregor Kleen <gkleen@yggdrasil.li>2021-10-09 10:20:15 +0200
committerGregor Kleen <gkleen@yggdrasil.li>2021-10-09 10:20:15 +0200
commitd515db79f20229cd1bdbb4365a89dc5b2842a5d5 (patch)
treeae172cc2774471cd76a30ef1d6fb9f9c315f9fe9 /modules/yggdrasil-wg
parent99b8a19deab992d0d873ac901fbe101478c5a233 (diff)
downloadnixos-d515db79f20229cd1bdbb4365a89dc5b2842a5d5.tar
nixos-d515db79f20229cd1bdbb4365a89dc5b2842a5d5.tar.gz
nixos-d515db79f20229cd1bdbb4365a89dc5b2842a5d5.tar.bz2
nixos-d515db79f20229cd1bdbb4365a89dc5b2842a5d5.tar.xz
nixos-d515db79f20229cd1bdbb4365a89dc5b2842a5d5.zip
sif: yggdrasil-wg
Diffstat (limited to 'modules/yggdrasil-wg')
-rw-r--r--modules/yggdrasil-wg/default.nix7
-rw-r--r--modules/yggdrasil-wg/hosts/sif.priv26
-rw-r--r--modules/yggdrasil-wg/hosts/sif.pub1
3 files changed, 34 insertions, 0 deletions
diff --git a/modules/yggdrasil-wg/default.nix b/modules/yggdrasil-wg/default.nix
index 1e253dc1..1fd7092c 100644
--- a/modules/yggdrasil-wg/default.nix
+++ b/modules/yggdrasil-wg/default.nix
@@ -14,11 +14,18 @@ let
14 persistentKeepalive = 25; 14 persistentKeepalive = 25;
15 dynamicEndpointRefreshSeconds = 86400; 15 dynamicEndpointRefreshSeconds = 86400;
16 } 16 }
17 { from = "sif";
18 to = "surtr";
19 endpointHost = "surtr.yggdrasil.li";
20 persistentKeepalive = 25;
21 dynamicEndpointRefreshSeconds = 86400;
22 }
17 ]; 23 ];
18 hostLength = subnetLength + 16; 24 hostLength = subnetLength + 16;
19 hostIPs = { 25 hostIPs = {
20 surtr = ["${subnet}::/${toString hostLength}"]; 26 surtr = ["${subnet}::/${toString hostLength}"];
21 vidhar = ["${subnet}:1::/${toString hostLength}"]; 27 vidhar = ["${subnet}:1::/${toString hostLength}"];
28 sif = ["${subnet}:2::/${toString hostLength}"];
22 }; 29 };
23 30
24 mkPublicKeyPath = host: ./hosts + "/${host}.pub"; 31 mkPublicKeyPath = host: ./hosts + "/${host}.pub";
diff --git a/modules/yggdrasil-wg/hosts/sif.priv b/modules/yggdrasil-wg/hosts/sif.priv
new file mode 100644
index 00000000..5641c1f2
--- /dev/null
+++ b/modules/yggdrasil-wg/hosts/sif.priv
@@ -0,0 +1,26 @@
1{
2 "data": "ENC[AES256_GCM,data:OxzV8j/9fiZ9ZZhgjQDbf4qOkczMZiT2rYgBZZjlLKdmDIYTqCzZ3epg6v+F,iv:cZzHiXb9jGUsbfnGTgl4em4enkd2mxCBHXoBCdTQkKs=,tag:i5JYsS+W88N3CSmOi6Yslw==,type:str]",
3 "sops": {
4 "kms": null,
5 "gcp_kms": null,
6 "azure_kv": null,
7 "hc_vault": null,
8 "age": null,
9 "lastmodified": "2021-10-09T08:19:12Z",
10 "mac": "ENC[AES256_GCM,data:XCMsYdeKpMO5K0qb+qk9jd93/dgYDz/FCRD4XMcKAggZAl2WiVphjybeAX8pjOhZAt+JGmUFdb1icbnPAkQ741B5msF79PemnRFqElF6yQZRsmfDmuo9xLenNWSLM00YpsBlZnsdUrz11uburgm78wPr/Fvj/6fryTkEYlNQrLM=,iv:u8rgprTsegxOzM2v5zMHq3aMNTaOta45EYJCL684xFY=,tag:IGZbYmsc58sKzBaujH5l5g==,type:str]",
11 "pgp": [
12 {
13 "created_at": "2021-10-09T08:19:11Z",
14 "enc": "-----BEGIN PGP MESSAGE-----\n\nhF4Dgwm4NZSaLAcSAQdA7ENCPeYBw3QHeCIVeZtjnX4k1iWK+NZPP3uUQkh8JWMw\noxlc9S0yqG7AerCJszSwmF4hC7B41Zsq97QFVQ+vecohermef7ZZZclw7adnMYl1\n0lwBT1RNT1V+9Tow0uNHKJpMzAwmlG0t5KZrXqsSKnjyvCkdTSKWg0yVMtLgy4lN\nnjk1P66Q3vGEFd9aVLVvtxrJ1TBtN7MTVtS/g0yMzz0WaZoTL4kFRjkaoBDSVw==\n=eJe0\n-----END PGP MESSAGE-----\n",
15 "fp": "F1AF20B9511B63F681A14E8D51AEFBCD1DEF68F8"
16 },
17 {
18 "created_at": "2021-10-09T08:19:11Z",
19 "enc": "-----BEGIN PGP MESSAGE-----\n\nhF4DXxoViZlp6dISAQdAv3YnirqRXgFoLz/XTNx1gccOW/lylh0iEDGNcr1seVsw\nJdrmxN8sAsDKIsem8JEBNhT9RFHtUfVY2SjWpwWX5Xcm5EJSUFaa9lTDA8e6q7SB\n0lwBPFnboct+bXp22xpahkz5NOgbnNNIS27S9bizGfUu5w6cHYs8BGzaXXdLRjuh\nSKX57025OXD9sEScsQoakFMKbAgtMIDbhArCFRdxNLCNqCn7Dpy+R4DbKcWc+A==\n=gLxH\n-----END PGP MESSAGE-----\n",
20 "fp": "30D3453B8CD02FE2A3E7C78C0FB536FB87AE8F51"
21 }
22 ],
23 "unencrypted_suffix": "_unencrypted",
24 "version": "3.7.1"
25 }
26} \ No newline at end of file
diff --git a/modules/yggdrasil-wg/hosts/sif.pub b/modules/yggdrasil-wg/hosts/sif.pub
new file mode 100644
index 00000000..0f6ec4a8
--- /dev/null
+++ b/modules/yggdrasil-wg/hosts/sif.pub
@@ -0,0 +1 @@
yioRagUtRvalJLrTtLp8NPiym6a3RpIcqgVfNL1iyRA=