summaryrefslogtreecommitdiff
path: root/os/cez/modules/wireguard.nix
diff options
context:
space:
mode:
Diffstat (limited to 'os/cez/modules/wireguard.nix')
-rw-r--r--os/cez/modules/wireguard.nix27
1 files changed, 25 insertions, 2 deletions
diff --git a/os/cez/modules/wireguard.nix b/os/cez/modules/wireguard.nix
index e6fa454..90cce8d 100644
--- a/os/cez/modules/wireguard.nix
+++ b/os/cez/modules/wireguard.nix
@@ -1,9 +1,30 @@
-{ config, ... }: let
+{ config, pkgs, ... }: let
domain = config.global.userdata.domain;
+ wgIface = "kay";
+
+ helper = pkgs.writeShellApplication {
+ name = "vpn";
+ text = ''
+ note() {
+ command -v notify-send > /dev/null &&
+ notify-send "󰒒 vpn" "$1"
+
+ printf "\n%s\n" "$1"
+ }
+
+ if systemctl status "wg-quick-${wgIface}.service" > /dev/null 2>&1; then
+ sudo -A systemctl stop "wg-quick-${wgIface}.service" &&
+ note "connection was dropped"
+ else
+ sudo -A systemctl start "wg-quick-${wgIface}.service" &&
+ note "traffic routed through ${wgIface}"
+ fi
+ '';
+ };
in {
sops.secrets."misc/wireguard" = {};
- networking.wg-quick.interfaces."kay" = {
+ networking.wg-quick.interfaces.${wgIface} = {
autostart = false;
address = [ "10.0.1.2/24" ];
dns = [ "10.0.1.1" ];
@@ -21,4 +42,6 @@ in {
persistentKeepalive = 25;
}];
};
+
+ environment.systemPackages = [ helper ];
}