dadada/nix-config
dadada/nix-config
1
0
Fork 0
Code Issues 2 Pull requests 5 Projects Releases Packages Wiki Activity Actions 1

networking: reresolve wg dns hourly

Browse source
This commit is contained in:
Tim Schubert 2021-05-23 11:53:08 +02:00
parent 4d7719ea99
commit 434524e68d
Signed by: dadada
GPG key ID: EEB8D1CE62C4DFEA
1 changed files with 13 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

13
modules/networking.nix
View file

@ -64,6 +64,19 @@ in
}; };
}; };
# https://lists.zx2c4.com/pipermail/wireguard/2017-November/002028.html
systemd.timers.wg-reresolve-dns = mkIf (cfg.vpnExtension != null) {
wantedBy = [ "timers.target" ];
partOf = [ "wg-reresolve-dns.service" ];
timerConfig.OnCalendar = "hourly";
};
systemd.services.wg-reresolve-dns = mkIf (cfg.vpnExtension != null) {
serviceConfig.Type = "oneshot";
script = ''
${pkgs.wireguard-tools}/bin/wg set bs peer lFB2DWtzp55ajV0Fk/OWdO9JlGvN9QsayYKQQHV3GEs= endpoint bs.vpn.dadada.li:51234 persistent-keepalive 25 allowed-ips fd42:dead:beef::/48
'';
};
fileSystems."/mnt/media.dadada.li" = mkIf cfg.enableBsShare { fileSystems."/mnt/media.dadada.li" = mkIf cfg.enableBsShare {
device = "media.dadada.li:/mnt/storage/share"; device = "media.dadada.li:/mnt/storage/share";
fsType = "nfs"; fsType = "nfs";