about summary refs log tree commit diff
path: root/docs/wireguard.org
blob: 456205fb197dd6f991e10a4077e8c32cdfca33b3 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
#+TITLE: Configuration for wireguard

* Creating the keys
Create a directory with the hostname under =secrets/network/=.

We need a key for the host:
#+begin_src sh
(umask 0077; wg genkey > peer_A.key)
#+end_src

Next we create the public key:
#+begin_src sh
wg pubkey < peer_A.key > peer_A.pub
#+end_src

Now we need to add the private key to the list of secrets:
#+begin_src sh
nix run github:ryantm/agenix -- -e secrets/network/<host name>/wireguard_privatekey.age
#+end_src

Once this is done, update [[file:~/workspace/world/configs/wireguard.toml][wireguard.toml]] to add the new peer with the public key.

Once this is completed, we can delete the files =peer_A.key= and =peer_A.pub=.