privatevoid.net/depot
1
1
Fork 0
Code Issues 23 Pull requests 2 Projects 3 Releases Packages Wiki Activity Actions

cluster/services/wireguard: add external etcd node to mesh net

Browse source
This commit is contained in:
Max Headroom 2022-08-04 23:25:16 +02:00
parent d433173616
commit f5d5c3e538
1 changed files with 8 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
cluster/services/wireguard/mesh.nix
View file

@ -11,6 +11,13 @@ let
allowedIPs = [ "${peerLink.extra.meshIp}/32" ] ++ peerLink.extra.extraRoutes;
endpoint = peerLink.tuple;
};
extraPeers = [
{
publicKey = "Veol/Yw5Nf3eZVSGynLZIuR2kvnyGynexzQ8GhdDQWo=";
allowedIPs = [ "10.1.1.151/32" ];
endpoint = "pve-etcd-node-fb2465761cf3ce658e6b410bbcf1f2db.fly.dev:51280";
}
];
in
{
age.secrets.wireguard-key-core = {
@ -30,7 +37,7 @@ in
ips = [ "${link.extra.meshIp}/24" ];
listenPort = link.port;
privateKeyFile = config.age.secrets.wireguard-key-core.path;
peers = map mkPeer cluster.config.services.wireguard.otherNodes.mesh;
peers = map mkPeer cluster.config.services.wireguard.otherNodes.mesh ++ extraPeers;
};
};
};