Setup wireguard

2022-11-18 23:25:54 +01:00 · 2022-11-18 23:25:54 +01:00 · d6619a35fa
commit d6619a35fa
parent 66e515a419
10 changed files with 216 additions and 46 deletions
--- a/modules/base/network/mobile.nix
+++ b/modules/base/network/mobile.nix
@ -19,39 +19,39 @@
    networking = {
      useDHCP = false;
      wireless = {
-      enable = true;
-      interfaces = [ wireless-interface ];
-      environmentFile = config.age.secrets."passwords/networks.age".path;
-      networks = {
-        "Public Universal Friend".psk = "@PSK_PUF@";
-        AndroidAP.psk = "@PSK_AndroidAP@";
-        draadloosnw.psk = "@PSK_draadloosnw@";
-        werknet.psk = "@PSK_werknet@";
-        Secorima.psk = "@PSK_Secorima@";
-        "Zeus WPI" = {
-          psk = "@PSK_Zeus@";
-          hidden = true;
+        enable = true;
+        interfaces = [ wireless-interface ];
+        environmentFile = config.age.secrets."passwords/networks.age".path;
+        networks = {
+          "Public Universal Friend".psk = "@PSK_PUF@";
+          AndroidAP.psk = "@PSK_AndroidAP@";
+          draadloosnw.psk = "@PSK_draadloosnw@";
+          werknet.psk = "@PSK_werknet@";
+          Secorima.psk = "@PSK_Secorima@";
+          "Zeus WPI" = {
+            psk = "@PSK_Zeus@";
+            hidden = true;
+          };
+          "Zeus Event 5G".psk = "@PSK_Zeus@";
+          eduroam = {
+            authProtocols = [ "WPA-EAP" ];
+            auth = ''
+              eap=PEAP
+              identity="@EDUROAM_USER@"
+              password="@EDUROAM_PASS@"
+            '';
+            extraConfig = ''
+              phase1="peaplabel=0"
+              phase2="auth=MSCHAPV2"
+              group=CCMP TKIP
+              ca_cert="${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt"
+              altsubject_match="DNS:radius.ugent.be"
+            '';
+          };
+          "GUK-huis".psk = "@PSK_GUKhuis@";
        };
-        "Zeus Event 5G".psk = "@PSK_Zeus@";
-        eduroam = {
-          authProtocols = [ "WPA-EAP" ];
-          auth = ''
-            eap=PEAP
-            identity="@EDUROAM_USER@"
-            password="@EDUROAM_PASS@"
-          '';
-          extraConfig = ''
-            phase1="peaplabel=0"
-            phase2="auth=MSCHAPV2"
-            group=CCMP TKIP
-            ca_cert="${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt"
-            altsubject_match="DNS:radius.ugent.be"
-          '';
-        };
-        "GUK-huis".psk = "@PSK_GUKhuis@";
      };
    };
-    };
    systemd.network = {
      enable = true;
      networks = {
@ -60,11 +60,13 @@
          DHCP = "yes";
          matchConfig = { Name = wireless-interface; };
        };
-      } // lib.mapAttrs (name: attrs: {
-        enable = true;
-        DHCP = "yes";
-        matchConfig = { Name = name; };
-      } // attrs) wired-interfaces;
+      } // lib.mapAttrs
+        (name: attrs: {
+          enable = true;
+          DHCP = "yes";
+          matchConfig = { Name = name; };
+        } // attrs)
+        wired-interfaces;
      wait-online.anyInterface = true;
    };