From 1bcfcb26b8c57c0a548473c7c5506b6601a8d357 Mon Sep 17 00:00:00 2001
From: dadada <dadada@dadada.li>
Date: Sat, 2 Jan 2021 17:42:11 +0100
Subject: [PATCH] Set up hydra VPN

---
 hosts/pruflas/default.nix | 17 +++++++++++++++++
 hosts/surgat/default.nix  | 15 +++++++++++++++
 2 files changed, 32 insertions(+)

diff --git a/hosts/pruflas/default.nix b/hosts/pruflas/default.nix
index 92fd616..aadcb92 100644
--- a/hosts/pruflas/default.nix
+++ b/hosts/pruflas/default.nix
@@ -81,4 +81,21 @@ in
       size = 32768;
     }
   ];
+
+
+  networking.wireguard.interfaces."hydra" = {
+    ips = [ "fcde:ad::1/64" ];
+    listenPort = 51235;
+
+    privateKeyFile = "/var/lib/wireguard/hydra";
+
+    peers = [
+      {
+        publicKey = "KzL+PKlv4LktIqqTqC9Esw8dkSZN2qSn/vq76UHbOlY=";
+        allowedIPs = [ "fcde:ad::2/128" ];
+        endpoint = "surgat.dadada.li:51235";
+        persistentKeepalive = 25;
+      }
+    ];
+  };
 }
diff --git a/hosts/surgat/default.nix b/hosts/surgat/default.nix
index e6537be..c26e8b3 100644
--- a/hosts/surgat/default.nix
+++ b/hosts/surgat/default.nix
@@ -86,4 +86,19 @@ in
       size = 4096;
     }
   ];
+
+  networking.wireguard.interfaces."hydra" = {
+    ips = [ "fcde:ad::2/64" ];
+    listenPort = 51235;
+
+    privateKeyFile = "/var/lib/wireguard/hydra";
+
+    peers = [
+      {
+        publicKey = "CTKwL6+SJIqKXr1DIHejMDgjoxlWPaT78Pz3+JqcNlw=";
+        allowedIPs = [ "fcde:ad::1/128" ];
+        persistentKeepalive = 25;
+      }
+    ];
+  };
 }