From b637a518646ae2147403f01bd9ee250381bd8de0 Mon Sep 17 00:00:00 2001
From: Mel <mel@rnrd.eu>
Date: Sat, 4 Oct 2025 00:11:22 +0200
Subject: Factor out common public VPN peers to own module

Signed-off-by: Mel <mel@rnrd.eu>
---
 modules/vpn.nix | 31 +++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)
 create mode 100644 modules/vpn.nix

(limited to 'modules')

diff --git a/modules/vpn.nix b/modules/vpn.nix
new file mode 100644
index 0000000..6772c2a
--- /dev/null
+++ b/modules/vpn.nix
@@ -0,0 +1,31 @@
+{ ... }:
+
+{
+  # these are the common peers that will want to access our hosts
+  # that run the vpn in different parts of the world.
+  foundation = {
+    wireguard.server = {
+      enable = true;
+      # has to be set by the individual server running the vpn:
+      # like, for example:
+      # externalInterface = "eth0";
+
+      peers = {
+        mel = {
+          key = "vnZoHXapCLLUhZ8A8R5W0iJ8LpWVLve29z41kkoT0BU=";
+          ip = 2;
+        };
+
+        andrei = {
+          key = "qqU4uYImLfUohIwl4KBshPtTINFcs0JVALjbmwpfxRg=";
+          ip = 3;
+        };
+
+        sergo = {
+          key = "qbZGMNIDZFCJC6SHtlyNIlIdGWHELceXClJCcagrj2Y=";
+          ip = 4;
+        };
+      };
+    };
+  };
+}
-- 
cgit 1.4.1