From aa78838cbe0121e13966b4e034386a186f2963cc Mon Sep 17 00:00:00 2001
From: Mel <mel@rnrd.eu>
Date: Fri, 3 Oct 2025 18:00:00 +0200
Subject: Add VPN configuration to taureau

Signed-off-by: Mel <mel@rnrd.eu>
---
 machines/taureau/default.nix      |  22 ++++++++++++++++++++++
 secrets/secrets.nix               |   5 ++++-
 secrets/wireguard-private-key.age | Bin 1247 -> 1357 bytes
 3 files changed, 26 insertions(+), 1 deletion(-)

diff --git a/machines/taureau/default.nix b/machines/taureau/default.nix
index 8c6b092..ae64740 100644
--- a/machines/taureau/default.nix
+++ b/machines/taureau/default.nix
@@ -23,6 +23,28 @@
         "tailnet"
       ];
     };
+
+    wireguard.server = {
+      enable = true;
+      externalInterface = "enp6s16";
+
+      peers = {
+        mel = {
+          key = "vnZoHXapCLLUhZ8A8R5W0iJ8LpWVLve29z41kkoT0BU=";
+          ip = 2;
+        };
+
+        andrei = {
+          key = "qqU4uYImLfUohIwl4KBshPtTINFcs0JVALjbmwpfxRg=";
+          ip = 3;
+        };
+
+        sergo = {
+          key = "qbZGMNIDZFCJC6SHtlyNIlIdGWHELceXClJCcagrj2Y=";
+          ip = 4;
+        };
+      };
+    };
   };
 
   system.stateVersion = "25.05";
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index 0cd4130..670f747 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -9,6 +9,7 @@ let
     corsac
     fourmi
     zibeline
+    taureau
     ;
 in
 {
@@ -42,8 +43,10 @@ in
   ] ++ allAdmins;
 
   "wireguard-private-key.age".publicKeys = [
+    renard
+
     taupe
     zibeline
-    renard
+    taureau
   ] ++ allAdmins;
 }
diff --git a/secrets/wireguard-private-key.age b/secrets/wireguard-private-key.age
index 51f31c2..1a118a7 100644
Binary files a/secrets/wireguard-private-key.age and b/secrets/wireguard-private-key.age differ
-- 
cgit 1.4.1