imports = [
../../nixos/profiles/dnscrypt-proxy2.nix
../../nixos/profiles/wireguard/wg-intra.nix
+ ../../nixos/profiles/networking/ssh.nix
+ ../../nixos/profiles/networking/wifi.nix
+ ../../nixos/profiles/openvpn/calyx.nix
+ ./wireguard.nix
networking/nftables.nix
];
install.substituteOnDestination = false;
'';
};
- networking.wireguard.wg-intra.peers = {
- mermet.enable = true;
- losurdo.enable = true;
- patate.enable = true;
- aubergine.enable = true;
- };
-
- systemd.services.sshd.serviceConfig.LoadCredentialEncrypted =
- [ "ed25519.key:${inputs.self}/host/${hostName}/networking/ssh/ed25519.key.cred" ];
- services.openssh.hostKeys =
- [ { type = "ed25519"; path = "/run/credentials/sshd.service/ed25519.key"; }
- ];
-
environment.systemPackages = [
pkgs.iw
pkgs.modem-manager-gui
];
+
+ systemd.services.sshd.serviceConfig.LoadCredentialEncrypted = [
+ "host.key:${ssh/host.key.cred}"
+ ];
}
sourcephile / git / julm / julm-nix.git / blobdiff