From 303d436f49fff97672afafaa47afaa1895e7f379 Mon Sep 17 00:00:00 2001 From: sefidel Date: Tue, 19 Sep 2023 01:26:42 +0900 Subject: feat(nixos/alpha): enable nm-mullvad --- nixos/alpha/configuration.nix | 27 +++++++++++++++++++++++++++ 1 file changed, 27 insertions(+) (limited to 'nixos/alpha/configuration.nix') diff --git a/nixos/alpha/configuration.nix b/nixos/alpha/configuration.nix index d5912d9..d15baec 100644 --- a/nixos/alpha/configuration.nix +++ b/nixos/alpha/configuration.nix @@ -64,6 +64,33 @@ networking.useDHCP = false; networking.firewall.enable = true; + sops.secrets.mullvad-private-key = { }; + sops.secrets.mullvad-ipv4-address = { }; + sops.secrets.mullvad-ipv6-address = { }; + + networking.networkmanager.nm-mullvad = { + enable = true; + + listenPort = 51820; + openFirewall = true; + + autoConnect = { + enable = true; + profile = "jp-tyo-wg-001"; + }; + + availableServers = [ + "jp-tyo-wg-001" + "jp-osa-wg-002" + "se-mma-wg-001" + "se-sto-wg-002" + ]; + + privateKeyPath = config.sops.secrets.mullvad-private-key.path; + ipv4AddressPath = config.sops.secrets.mullvad-ipv4-address.path; + ipv6AddressPath = config.sops.secrets.mullvad-ipv6-address.path; + }; + programs.nm-applet.enable = true; i18n.defaultLocale = "en_US.UTF-8"; -- cgit 1.4.1