lynatic/flake
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

made the hosts thingy into a hacky module

Browse source
This commit is contained in:
Lyn 2024-11-13 19:19:13 +01:00
parent 2ed2a77263
commit f386e19d29
2 changed files with 70 additions and 9 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

75
hosts/network.nix
View file

@ -52,22 +52,83 @@ in {
options = { options = {
${prefix} = { ${prefix} = {
network.wg_subnets.IPv4 = lib.mkOption { network.wg_subnets.IPv4 = lib.mkOption {
type = str; type = types.str;
description = "The IPv6 range that wireguard peers will use"; description = "The IPv6 range that wireguard peers will use";
}; };
network.wg_subnets.IPv6 = lib.mkOption { network.wg_subnets.IPv6 = lib.mkOption {
type = str; type = types.str;
description = "The IPv4 range that wireguard peers will use"; description = "The IPv4 range that wireguard peers will use";
}; };
# defining the entire hosts part as a module
network.hosts = lib.mkOption { network.hosts = lib.mkOption {
type = lib.types.set; type = types.attrsOf (lib.types.submodule {
options = {
wg = lib.mkOption {
type = lib.types.submodule {
options = {
enabled = lib.mkOption {
type = lib.types.bool;
default = false;
description = "Enable WireGuard";
};
pubkey = lib.mkOption {
type = types.nullOr types.str;
default = null;
description = "Public key for WireGuard";
};
port = lib.mkOption {
type = lib.types.int;
default = 51820;
description = "Port for WireGuard";
};
};
};
description = "WireGuard configuration";
};
v4 = lib.mkOption {
type = lib.types.submodule {
options = {
public = lib.mkOption {
type = types.nullOr types.str;
default = null;
description = "Public IPv4 address";
};
internal = lib.mkOption {
type = lib.types.str;
description = "Wireguard-internal IPv4 address";
};
};
default = {};
};
description = "IPv4 configuration";
};
v6 = lib.mkOption {
type = lib.types.submodule {
options = {
public = lib.mkOption {
type = types.nullOr types.str;
description = "Public IPv6 address";
};
internal = lib.mkOption {
type = lib.types.str;
description = "Wireguard-internal IPv6 address";
};
};
};
description = "IPv6 configuration";
default = {};
};
};
});
default = {};
description = "All hosts in this network that this config should be aware of"; description = "All hosts in this network that this config should be aware of";
}; };
}; };
}; config = {
config = { ${prefix}.network = {
${prefix}.network = { inherit hosts wg_subnets;
inherit hosts wg_subnets; };
}; };
}; };
} }

4
modules/services/wgautomesh.nix
View file

@ -38,8 +38,8 @@ in {
networking.wireguard.interfaces.wg0 = { networking.wireguard.interfaces.wg0 = {
ips = ips =
if cfg.useIPv6 if cfg.useIPv6
then [${meshnetwork.wg_subnets.IPv6}] then ["${meshnetwork.wg_subnets.IPv6}"]
else [${meshnetwork.wg_subnets.IPv4}]; else ["${meshnetwork.wg_subnets.IPv4}"];
listenPort = cfg.wireguardPort; listenPort = cfg.wireguardPort;
privateKeyFile = "/var/lib/wireguard-keys/private"; privateKeyFile = "/var/lib/wireguard-keys/private";
mtu = 1420; mtu = 1420;