diff options
author | Gregor Kleen <gkleen@yggdrasil.li> | 2021-10-09 10:20:15 +0200 |
---|---|---|
committer | Gregor Kleen <gkleen@yggdrasil.li> | 2021-10-09 10:20:15 +0200 |
commit | d515db79f20229cd1bdbb4365a89dc5b2842a5d5 (patch) | |
tree | ae172cc2774471cd76a30ef1d6fb9f9c315f9fe9 /modules | |
parent | 99b8a19deab992d0d873ac901fbe101478c5a233 (diff) | |
download | nixos-d515db79f20229cd1bdbb4365a89dc5b2842a5d5.tar nixos-d515db79f20229cd1bdbb4365a89dc5b2842a5d5.tar.gz nixos-d515db79f20229cd1bdbb4365a89dc5b2842a5d5.tar.bz2 nixos-d515db79f20229cd1bdbb4365a89dc5b2842a5d5.tar.xz nixos-d515db79f20229cd1bdbb4365a89dc5b2842a5d5.zip |
sif: yggdrasil-wg
Diffstat (limited to 'modules')
-rw-r--r-- | modules/yggdrasil-wg/default.nix | 7 | ||||
-rw-r--r-- | modules/yggdrasil-wg/hosts/sif.priv | 26 | ||||
-rw-r--r-- | modules/yggdrasil-wg/hosts/sif.pub | 1 |
3 files changed, 34 insertions, 0 deletions
diff --git a/modules/yggdrasil-wg/default.nix b/modules/yggdrasil-wg/default.nix index 1e253dc1..1fd7092c 100644 --- a/modules/yggdrasil-wg/default.nix +++ b/modules/yggdrasil-wg/default.nix | |||
@@ -14,11 +14,18 @@ let | |||
14 | persistentKeepalive = 25; | 14 | persistentKeepalive = 25; |
15 | dynamicEndpointRefreshSeconds = 86400; | 15 | dynamicEndpointRefreshSeconds = 86400; |
16 | } | 16 | } |
17 | { from = "sif"; | ||
18 | to = "surtr"; | ||
19 | endpointHost = "surtr.yggdrasil.li"; | ||
20 | persistentKeepalive = 25; | ||
21 | dynamicEndpointRefreshSeconds = 86400; | ||
22 | } | ||
17 | ]; | 23 | ]; |
18 | hostLength = subnetLength + 16; | 24 | hostLength = subnetLength + 16; |
19 | hostIPs = { | 25 | hostIPs = { |
20 | surtr = ["${subnet}::/${toString hostLength}"]; | 26 | surtr = ["${subnet}::/${toString hostLength}"]; |
21 | vidhar = ["${subnet}:1::/${toString hostLength}"]; | 27 | vidhar = ["${subnet}:1::/${toString hostLength}"]; |
28 | sif = ["${subnet}:2::/${toString hostLength}"]; | ||
22 | }; | 29 | }; |
23 | 30 | ||
24 | mkPublicKeyPath = host: ./hosts + "/${host}.pub"; | 31 | mkPublicKeyPath = host: ./hosts + "/${host}.pub"; |
diff --git a/modules/yggdrasil-wg/hosts/sif.priv b/modules/yggdrasil-wg/hosts/sif.priv new file mode 100644 index 00000000..5641c1f2 --- /dev/null +++ b/modules/yggdrasil-wg/hosts/sif.priv | |||
@@ -0,0 +1,26 @@ | |||
1 | { | ||
2 | "data": "ENC[AES256_GCM,data:OxzV8j/9fiZ9ZZhgjQDbf4qOkczMZiT2rYgBZZjlLKdmDIYTqCzZ3epg6v+F,iv:cZzHiXb9jGUsbfnGTgl4em4enkd2mxCBHXoBCdTQkKs=,tag:i5JYsS+W88N3CSmOi6Yslw==,type:str]", | ||
3 | "sops": { | ||
4 | "kms": null, | ||
5 | "gcp_kms": null, | ||
6 | "azure_kv": null, | ||
7 | "hc_vault": null, | ||
8 | "age": null, | ||
9 | "lastmodified": "2021-10-09T08:19:12Z", | ||
10 | "mac": "ENC[AES256_GCM,data:XCMsYdeKpMO5K0qb+qk9jd93/dgYDz/FCRD4XMcKAggZAl2WiVphjybeAX8pjOhZAt+JGmUFdb1icbnPAkQ741B5msF79PemnRFqElF6yQZRsmfDmuo9xLenNWSLM00YpsBlZnsdUrz11uburgm78wPr/Fvj/6fryTkEYlNQrLM=,iv:u8rgprTsegxOzM2v5zMHq3aMNTaOta45EYJCL684xFY=,tag:IGZbYmsc58sKzBaujH5l5g==,type:str]", | ||
11 | "pgp": [ | ||
12 | { | ||
13 | "created_at": "2021-10-09T08:19:11Z", | ||
14 | "enc": "-----BEGIN PGP MESSAGE-----\n\nhF4Dgwm4NZSaLAcSAQdA7ENCPeYBw3QHeCIVeZtjnX4k1iWK+NZPP3uUQkh8JWMw\noxlc9S0yqG7AerCJszSwmF4hC7B41Zsq97QFVQ+vecohermef7ZZZclw7adnMYl1\n0lwBT1RNT1V+9Tow0uNHKJpMzAwmlG0t5KZrXqsSKnjyvCkdTSKWg0yVMtLgy4lN\nnjk1P66Q3vGEFd9aVLVvtxrJ1TBtN7MTVtS/g0yMzz0WaZoTL4kFRjkaoBDSVw==\n=eJe0\n-----END PGP MESSAGE-----\n", | ||
15 | "fp": "F1AF20B9511B63F681A14E8D51AEFBCD1DEF68F8" | ||
16 | }, | ||
17 | { | ||
18 | "created_at": "2021-10-09T08:19:11Z", | ||
19 | "enc": "-----BEGIN PGP MESSAGE-----\n\nhF4DXxoViZlp6dISAQdAv3YnirqRXgFoLz/XTNx1gccOW/lylh0iEDGNcr1seVsw\nJdrmxN8sAsDKIsem8JEBNhT9RFHtUfVY2SjWpwWX5Xcm5EJSUFaa9lTDA8e6q7SB\n0lwBPFnboct+bXp22xpahkz5NOgbnNNIS27S9bizGfUu5w6cHYs8BGzaXXdLRjuh\nSKX57025OXD9sEScsQoakFMKbAgtMIDbhArCFRdxNLCNqCn7Dpy+R4DbKcWc+A==\n=gLxH\n-----END PGP MESSAGE-----\n", | ||
20 | "fp": "30D3453B8CD02FE2A3E7C78C0FB536FB87AE8F51" | ||
21 | } | ||
22 | ], | ||
23 | "unencrypted_suffix": "_unencrypted", | ||
24 | "version": "3.7.1" | ||
25 | } | ||
26 | } \ No newline at end of file | ||
diff --git a/modules/yggdrasil-wg/hosts/sif.pub b/modules/yggdrasil-wg/hosts/sif.pub new file mode 100644 index 00000000..0f6ec4a8 --- /dev/null +++ b/modules/yggdrasil-wg/hosts/sif.pub | |||
@@ -0,0 +1 @@ | |||
yioRagUtRvalJLrTtLp8NPiym6a3RpIcqgVfNL1iyRA= | |||