flake/hosts/network.nix

{
  lib,
  config,
  ...
}: let
  prefix = "lyn";

  #define wireguard subnets
  wg_subnets = {
    IPv4 = "10.35.0.1/24";
    IPv6 = "fd1a:acab:cafe:1337::/64";
  };

  #Below is where all hosts are defined
  hosts = {
    wg-gateway = {
      wg = {
        enabled = true;
        pubkey = "lol";
        port = 51820;
      };
      v4 = {
        public = "78.47.226.47";
        # we use 10.35.0.0/16 as a range for private subnets, specifically 10.35.0.0/24 for wireguard peers
        internal = "10.35.0.1";
      };
      v6 = {
        public = "2a01:4f8:1c1b:d2db::";
        # 1aacabcafe is the global ID and 1337 is the wireguard peer subnet ID, resulting in the ULA fd1a:acab:cafe:1337::/64
        internal = "fd1a:acab:cafe:1337:8f4c:68cd";
      };
    };
    supernova = {
      wg = {
        enabled = true;
        pubkey = "lol";
        port = 51820;
      };
      v4 = {
        public = "";
        # we use 10.35.0.0/16 as a range for private subnets, specifically 10.35.0.0/24 for wireguard peers
        internal = "10.35.0.2";
      };
      v6 = {
        public = "";
        # 1aacabcafe is the global ID and 1337 is the wireguard peer subnet ID, resulting in the ULA fd1a:acab:cafe:1337::/64
        internal = "fd1a:acab:cafe:1337:6722:3657";
      };
    };
  };
in {
  options = {
    ${prefix} = {
      network.wg_subnets.IPv4 = lib.mkOption {
        type = lib.types.str;
        description = "The IPv6 range that wireguard peers will use";
      };
      network.wg_subnets.IPv6 = lib.mkOption {
        type = lib.types.str;
        description = "The IPv4 range that wireguard peers will use";
      };

      # defining the entire hosts part as a module
      network.hosts = lib.mkOption {
        type = lib.types.attrsOf (lib.types.submodule {
          options = {
            wg = lib.mkOption {
              type = lib.types.submodule {
                options = {
                  enabled = lib.mkOption {
                    type = lib.types.bool;
                    default = false;
                    description = "Enable WireGuard";
                  };
                  pubkey = lib.mkOption {
                    type = lib.types.nullOr lib.types.str;
                    default = null;
                    description = "Public key for WireGuard";
                  };
                  port = lib.mkOption {
                    type = lib.types.int;
                    default = 51820;
                    description = "Port for WireGuard";
                  };
                };
              };
              description = "WireGuard configuration";
            };
            v4 = lib.mkOption {
              type = lib.types.submodule {
                options = {
                  public = lib.mkOption {
                    type = lib.types.nullOr lib.types.str;
                    default = null;
                    description = "Public IPv4 address";
                  };
                  internal = lib.mkOption {
                    type = lib.types.str;
                    description = "Wireguard-internal IPv4 address";
                  };
                };
              };
              description = "IPv4 configuration";
              default = {};
            };
            v6 = lib.mkOption {
              type = lib.types.submodule {
                options = {
                  public = lib.mkOption {
                    type = lib.types.nullOr lib.types.str;
                    description = "Public IPv6 address";
                  };
                  internal = lib.mkOption {
                    type = lib.types.str;
                    description = "Wireguard-internal IPv6 address";
                  };
                };
              };
              description = "IPv6 configuration";
              default = {};
            };
          };
        });
        default = {};
        description = "All hosts in this network that this config should be aware of";
      };
    };
  };
  ${prefix}.network = {
    inherit hosts wg_subnets;
  };
}
huh would this work? 2024-11-13 05:15:14 +01:00			`{`
			`lib,`
			`config,`
			`...`
			`}: let`
changed prefix to lyn because that works too now; fixed network.nix defining config values inside the options scope 2024-11-13 20:27:18 +01:00			`prefix = "lyn";`
first draft of the automesh abstraction 2024-11-12 01:49:31 +01:00
			`#define wireguard subnets`
			`wg_subnets = {`
first attempt at porting over the peerlist to wgautomesh module to make it more dynamic 2024-11-13 18:43:06 +01:00			`IPv4 = "10.35.0.1/24";`
			`IPv6 = "fd1a:acab:cafe:1337::/64";`
first draft of the automesh abstraction 2024-11-12 01:49:31 +01:00			`};`

			`#Below is where all hosts are defined`
			`hosts = {`
			`wg-gateway = {`
			`wg = {`
			`enabled = true;`
			`pubkey = "lol";`
			`port = 51820;`
			`};`
			`v4 = {`
			`public = "78.47.226.47";`
			`# we use 10.35.0.0/16 as a range for private subnets, specifically 10.35.0.0/24 for wireguard peers`
			`internal = "10.35.0.1";`
			`};`
			`v6 = {`
			`public = "2a01:4f8:1c1b:d2db::";`
			`# 1aacabcafe is the global ID and 1337 is the wireguard peer subnet ID, resulting in the ULA fd1a:acab:cafe:1337::/64`
			`internal = "fd1a:acab:cafe:1337:8f4c:68cd";`
			`};`
			`};`
			`supernova = {`
			`wg = {`
			`enabled = true;`
			`pubkey = "lol";`
			`port = 51820;`
			`};`
			`v4 = {`
			`public = "";`
			`# we use 10.35.0.0/16 as a range for private subnets, specifically 10.35.0.0/24 for wireguard peers`
			`internal = "10.35.0.2";`
			`};`
			`v6 = {`
			`public = "";`
			`# 1aacabcafe is the global ID and 1337 is the wireguard peer subnet ID, resulting in the ULA fd1a:acab:cafe:1337::/64`
			`internal = "fd1a:acab:cafe:1337:6722:3657";`
			`};`
			`};`
			`};`
			`in {`
huh would this work? 2024-11-13 05:15:14 +01:00			`options = {`
first attempt at porting over the peerlist to wgautomesh module to make it more dynamic 2024-11-13 18:43:06 +01:00			`${prefix} = {`
			`network.wg_subnets.IPv4 = lib.mkOption {`
fix typos 2024-11-13 20:04:25 +01:00			`type = lib.types.str;`
first attempt at porting over the peerlist to wgautomesh module to make it more dynamic 2024-11-13 18:43:06 +01:00			`description = "The IPv6 range that wireguard peers will use";`
huh would this work? 2024-11-13 05:15:14 +01:00			`};`
first attempt at porting over the peerlist to wgautomesh module to make it more dynamic 2024-11-13 18:43:06 +01:00			`network.wg_subnets.IPv6 = lib.mkOption {`
fix typos 2024-11-13 20:04:25 +01:00			`type = lib.types.str;`
first attempt at porting over the peerlist to wgautomesh module to make it more dynamic 2024-11-13 18:43:06 +01:00			`description = "The IPv4 range that wireguard peers will use";`
huh would this work? 2024-11-13 05:15:14 +01:00			`};`
made the hosts thingy into a hacky module 2024-11-13 19:19:13 +01:00
			`# defining the entire hosts part as a module`
huh would this work? 2024-11-13 05:15:14 +01:00			`network.hosts = lib.mkOption {`
typo 2024-11-13 19:21:57 +01:00			`type = lib.types.attrsOf (lib.types.submodule {`
made the hosts thingy into a hacky module 2024-11-13 19:19:13 +01:00			`options = {`
			`wg = lib.mkOption {`
			`type = lib.types.submodule {`
			`options = {`
			`enabled = lib.mkOption {`
			`type = lib.types.bool;`
			`default = false;`
			`description = "Enable WireGuard";`
			`};`
			`pubkey = lib.mkOption {`
fix typos 2024-11-13 20:04:25 +01:00			`type = lib.types.nullOr lib.types.str;`
made the hosts thingy into a hacky module 2024-11-13 19:19:13 +01:00			`default = null;`
			`description = "Public key for WireGuard";`
			`};`
			`port = lib.mkOption {`
			`type = lib.types.int;`
			`default = 51820;`
			`description = "Port for WireGuard";`
			`};`
			`};`
			`};`
			`description = "WireGuard configuration";`
			`};`
			`v4 = lib.mkOption {`
			`type = lib.types.submodule {`
			`options = {`
			`public = lib.mkOption {`
fix typos 2024-11-13 20:04:25 +01:00			`type = lib.types.nullOr lib.types.str;`
made the hosts thingy into a hacky module 2024-11-13 19:19:13 +01:00			`default = null;`
			`description = "Public IPv4 address";`
			`};`
			`internal = lib.mkOption {`
			`type = lib.types.str;`
			`description = "Wireguard-internal IPv4 address";`
			`};`
			`};`
			`};`
			`description = "IPv4 configuration";`
fix typos 2024-11-13 20:04:25 +01:00			`default = {};`
made the hosts thingy into a hacky module 2024-11-13 19:19:13 +01:00			`};`
			`v6 = lib.mkOption {`
			`type = lib.types.submodule {`
			`options = {`
			`public = lib.mkOption {`
fix typos 2024-11-13 20:04:25 +01:00			`type = lib.types.nullOr lib.types.str;`
made the hosts thingy into a hacky module 2024-11-13 19:19:13 +01:00			`description = "Public IPv6 address";`
			`};`
			`internal = lib.mkOption {`
			`type = lib.types.str;`
			`description = "Wireguard-internal IPv6 address";`
			`};`
			`};`
			`};`
			`description = "IPv6 configuration";`
			`default = {};`
			`};`
			`};`
			`});`
			`default = {};`
huh would this work? 2024-11-13 05:15:14 +01:00			`description = "All hosts in this network that this config should be aware of";`
			`};`
first draft of the automesh abstraction 2024-11-12 01:49:31 +01:00			`};`
changed prefix to lyn because that works too now; fixed network.nix defining config values inside the options scope 2024-11-13 20:27:18 +01:00			`};`
			`${prefix}.network = {`
			`inherit hosts wg_subnets;`
first draft of the automesh abstraction 2024-11-12 01:49:31 +01:00			`};`
			`}`