about summary refs log tree commit diff
path: root/configs
diff options
context:
space:
mode:
authorFranck Cuny <franck@fcuny.net>2022-02-21 13:33:51 -0800
committerFranck Cuny <franck@fcuny.net>2022-02-21 13:33:51 -0800
commitcd9c8ec5fdbe4874c7be95c80f8ab86999b30390 (patch)
tree513331627090ae863c064cf2662ba77906e6f54a /configs
parentsecrets: initial config and a first secret (diff)
downloadworld-cd9c8ec5fdbe4874c7be95c80f8ab86999b30390.tar.gz
wireguard: module and peers configurations
Add a new module to automatically configure the peers for wireguard. The
module needs a configuration file (in `configs/wireguard.toml`) which
lists all the peers, their IP and and their public keys. The secret keys
is encrypted as a secret with agenix.

There's some initial documentation on how to use this setup.
Diffstat (limited to 'configs')
-rw-r--r--configs/wireguard.toml15
1 files changed, 15 insertions, 0 deletions
diff --git a/configs/wireguard.toml b/configs/wireguard.toml
new file mode 100644
index 0000000..0012ba9
--- /dev/null
+++ b/configs/wireguard.toml
@@ -0,0 +1,15 @@
+mask4 = 32
+subnet4 = "192.168.6"
+
+[peers.aptos]
+ipv4 = 110
+key = "DP3caAlh07OOU61u2L2QfEhakt/mVEGrMBVONNvpNhU="
+
+[peers.nas]
+ipv4 = 10
+key = "SFlgoY+fQDUnI2D6Xp3JhqFKWsZABqahCv8IgKPWizA="
+
+[peers.rtr]
+ipv4= 1
+key = "P4gxkIoQ9Ep6QqfTquJYbBkMPDJQkVE9v1eYh/uJwG8="
+