lasuite-federez/nix
4
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
No description
30 commits 1 branch 0 tags 488 KiB
Find a file
asyncnomi a95436771c Merge pull request 'simplified-mesh' (#1) from simplified-mesh into main 
Reviewed-on: #1
2025-07-23 21:46:37 +02:00
secrets simplified mesh 2025-07-22 20:50:48 +02:00
shared simplified comparison 2025-07-22 23:20:51 +02:00
.gitignore Initial commit 2025-07-17 23:40:38 +02:00
flake.lock add RENNES nodes and some helper function in the shell 2025-07-21 00:56:51 +02:00
flake.nix we only need one if and n peer, not the other way around 2025-07-21 02:34:47 +02:00
mapping.nix dedicated nftables 2025-07-22 00:05:56 +02:00
nodes.nix fix rt routing & nftables 2025-07-22 21:00:30 +02:00
README.md update README 2025-07-22 01:41:06 +02:00
shell.nix dedicated nftables 2025-07-22 00:05:56 +02:00

README.md

Nix - LaSuite Federez

Onboarding:

You will need at least nix installed on you machine

Wireguard

Add your publickeys into ./shared/users-wg.nix Create the following interfaces:

[interface]
Address = 172.19.128.<id>/32
Address = fc00:f::128:<i>/128
PrivateKey = <private.key>

[Peer]
PublicKey = nePNA6RDzgNeSC7deXqeoK2rGGei65tBNnCEN6ZKkEI=
Endpoint = 193.48.225.150:51920
PersistentKeepalive = 25
AllowedIPs = 172.19.0.0/17,fc00::/96

[interface]
Address = 172.19.129.<id>/32
Address = fc00:f::129:<id>/128
PrivateKey = <private.key>

[Peer]
PublicKey = tSnZQM0s1EaN2uvCgYP8xkLXt+NccBBPJj5UBzV3h2Y=
Endpoint = 193.48.225.150:51920
PersistentKeepalive = 25
AllowedIPs = 172.19.0.0/17,fc00::/96

Only one need to be up at a time

SSH

Prov yourself in ./shared/users.nix

Agenix

Add you decryption key into ./secrets/secrets.nix