nixfiles/data/wireguard/chaosInternalWireGuard.nix

let
  pubkeys = builtins.fromJSON (builtins.readFile ./chaosInternalWireGuardPubKeys.json);
  listenPort = 51820;
in rec {
  # 10.0.0.0/24 - machines
  # 10.0.1.0/24 - containers for hetzner-arm

  hosts = {
    "hetzner-arm" = {
      ip = "10.0.0.1";
      allowedIPs = [
        "10.0.0.1/32" # Allow itself
        "10.0.1.1/24" # Containers
      ];
      public = pubkeys."hetzner-arm";
      inherit listenPort;
      endpoint = "hetzner-arm.servers.genderfucked.monster:${toString listenPort}";
    };
    "vault" = {
      ip = "10.0.0.2";
      public = pubkeys."vault";
      inherit listenPort;
      endpoint = "vault.servers.genderfucked.monster:${toString listenPort}";
    };
    "lappy-t495" = {
      ip = "10.0.0.3";
      public = pubkeys."lappy-t495";
    };
    "raspberry" = {
      ip = "10.0.0.4";
      public = pubkeys."raspberry";
      inherit listenPort;
      endpoint = "raspberry.servers.genderfucked.monster:${toString listenPort}";
    };
    "iphone15" = {
      ip = "10.0.0.5";
      public = pubkeys."iphone15";
    };
    "iphone8" = {
      ip = "10.0.0.6";
      public = pubkeys."iphone8";
    };
  };
}
major tidy 2023-09-18 03:56:58 +01:00			`let`
			`pubkeys = builtins.fromJSON (builtins.readFile ./chaosInternalWireGuardPubKeys.json);`
move all postgres to one daemon, redo wireguard some, roundcube is haunted and network interface is broken somehow 2023-10-02 03:08:24 +01:00			`listenPort = 51820;`
major tidy 2023-09-18 03:56:58 +01:00			`in rec {`
move all postgres to one daemon, redo wireguard some, roundcube is haunted and network interface is broken somehow 2023-10-02 03:08:24 +01:00			`# 10.0.0.0/24 - machines`
			`# 10.0.1.0/24 - containers for hetzner-arm`

major tidy 2023-09-18 03:56:58 +01:00			`hosts = {`
migrate hetzner-vm to hetzner-arm; piped currently dead 2023-09-21 05:06:27 +01:00			`"hetzner-arm" = {`
move all postgres to one daemon, redo wireguard some, roundcube is haunted and network interface is broken somehow 2023-10-02 03:08:24 +01:00			`ip = "10.0.0.1";`
			`allowedIPs = [`
			`"10.0.0.1/32" # Allow itself`
			`"10.0.1.1/24" # Containers`
			`];`
migrate hetzner-vm to hetzner-arm; piped currently dead 2023-09-21 05:06:27 +01:00			`public = pubkeys."hetzner-arm";`
move all postgres to one daemon, redo wireguard some, roundcube is haunted and network interface is broken somehow 2023-10-02 03:08:24 +01:00			`inherit listenPort;`
			`endpoint = "hetzner-arm.servers.genderfucked.monster:${toString listenPort}";`
major tidy 2023-09-18 03:56:58 +01:00			`};`
			`"vault" = {`
move all postgres to one daemon, redo wireguard some, roundcube is haunted and network interface is broken somehow 2023-10-02 03:08:24 +01:00			`ip = "10.0.0.2";`
major tidy 2023-09-18 03:56:58 +01:00			`public = pubkeys."vault";`
move all postgres to one daemon, redo wireguard some, roundcube is haunted and network interface is broken somehow 2023-10-02 03:08:24 +01:00			`inherit listenPort;`
			`endpoint = "vault.servers.genderfucked.monster:${toString listenPort}";`
add remaining devices to chaosInternalWireguard and fix partOf behaviour 2023-09-18 15:40:33 +01:00			`};`
			`"lappy-t495" = {`
move all postgres to one daemon, redo wireguard some, roundcube is haunted and network interface is broken somehow 2023-10-02 03:08:24 +01:00			`ip = "10.0.0.3";`
add remaining devices to chaosInternalWireguard and fix partOf behaviour 2023-09-18 15:40:33 +01:00			`public = pubkeys."lappy-t495";`
			`};`
major tidy 2023-09-18 03:56:58 +01:00			`"raspberry" = {`
move all postgres to one daemon, redo wireguard some, roundcube is haunted and network interface is broken somehow 2023-10-02 03:08:24 +01:00			`ip = "10.0.0.4";`
major tidy 2023-09-18 03:56:58 +01:00			`public = pubkeys."raspberry";`
move all postgres to one daemon, redo wireguard some, roundcube is haunted and network interface is broken somehow 2023-10-02 03:08:24 +01:00			`inherit listenPort;`
			`endpoint = "raspberry.servers.genderfucked.monster:${toString listenPort}";`
			`};`
			`"iphone15" = {`
			`ip = "10.0.0.5";`
			`public = pubkeys."iphone15";`
			`};`
			`"iphone8" = {`
			`ip = "10.0.0.6";`
			`public = pubkeys."iphone8";`
major tidy 2023-09-18 03:56:58 +01:00			`};`
			`};`
			`}`