chire(os/cez/wireguard): return of the kingHEAD master

author: sinanmohd <sinan@sinanmohd.com> 2025-10-21 13:55:00 +0530
committer: sinanmohd <sinan@sinanmohd.com> 2025-10-21 13:55:00 +0530
commit: 58b6018c49dce6ac9a29c7249105096aa380289d (patch)
tree: ba9603fd37ccf8127b99e801ed790a72982fc23d /os/cez/modules/wireguard.nix
parent: 2071ec1cd3432eb3c055dbf5918f291e2ed15fea (diff)
1 files changed, 20 insertions, 0 deletions
diff --git a/os/cez/modules/wireguard.nix b/os/cez/modules/wireguard.nix
new file mode 100644
index 0000000..2bf2252
--- /dev/null
+++ b/os/cez/modules/wireguard.nix
@@ -0,0 +1,20 @@
+{ config, ... }:
+{
+  sops.secrets."misc/wireguard" = { };
+
+  networking.wg-quick.interfaces.bud = {
+    autostart = false;
+    address = [ "10.54.132.2/24" ];
+    mtu = 1420;
+    privateKeyFile = config.sops.secrets."misc/wireguard".path;
+
+    peers = [
+      {
+        publicKey = "O2GRMEWf22YRGKexHAdg1fitucTZ/U/om2MWEJMeyFQ=";
+        allowedIPs = [ "10.54.132.0/24" ];
+        endpoint = "primary.k8s.bud.studio:51820";
+        persistentKeepalive = 25;
+      }
+    ];
+  };
+}
author	sinanmohd <sinan@sinanmohd.com>	2025-10-21 13:55:00 +0530
committer	sinanmohd <sinan@sinanmohd.com>	2025-10-21 13:55:00 +0530
commit	58b6018c49dce6ac9a29c7249105096aa380289d (patch)
tree	ba9603fd37ccf8127b99e801ed790a72982fc23d /os/cez/modules/wireguard.nix
parent	2071ec1cd3432eb3c055dbf5918f291e2ed15fea (diff)