From 60221f474c6edca80468c0539c83a80f13b496bb Mon Sep 17 00:00:00 2001
From: kalipso <kalipso@c3d2.de>
Date: Tue, 14 Jan 2025 15:04:49 +0100
Subject: [PATCH] [vpn] fix allowedIps

it seems allowedIPs need to have /32 subnet
---
 machines/modules/malobeo/peers.nix | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/machines/modules/malobeo/peers.nix b/machines/modules/malobeo/peers.nix
index 676c7f69..ecdf8dc6 100644
--- a/machines/modules/malobeo/peers.nix
+++ b/machines/modules/malobeo/peers.nix
@@ -3,7 +3,7 @@
     role = "server";
     publicIp = "5.9.153.217";
     address = [ "10.100.0.1/24" ];
-    allowedIPs = [ "10.100.0.1/24" ];
+    allowedIPs = [ "10.100.0.1/32" ];
     listenPort = 51821;
     publicKey = "hF9H10Y8Ar7zvZXFoNM8LSoaYFgPCXv30c54SSEucX4=";
   };
@@ -11,28 +11,28 @@
   "celine" = {
     role = "client";
     address = [ "10.100.0.2/24" ];
-    allowedIPs = [ "10.100.0.2/24" ];
+    allowedIPs = [ "10.100.0.2/32" ];
     publicKey = "Jgx82tSOmZJS4sm1o8Eci9ahaQdQir2PLq9dBqsWZw4=";
   };
 
   "desktop" = {
     role = "client";
     address = [ "10.100.0.3/24" ];
-    allowedIPs = [ "10.100.0.3/24" ];
+    allowedIPs = [ "10.100.0.3/32" ];
     publicKey = "FtY2lcdWcw+nvtydOOUDyaeh/xkaqHA8y9GXzqU0Am0=";
   };
 
   "atlan-pc" = {
     role = "client";
     address = [ "10.100.0.5/24" ];
-    allowedIPs = [ "10.100.0.5/24" ];
+    allowedIPs = [ "10.100.0.5/32" ];
     publicKey = "TrJ4UAF//zXdaLwZudI78L+rTC36zEDodTDOWNS4Y1Y=";
   };
 
   "fanny" = {
     role = "client";
     address = [ "10.100.0.101/24" ];
-    allowedIPs = [ "10.100.0.101/24" ];
+    allowedIPs = [ "10.100.0.101/32" ];
     publicKey = "3U59F6T1s/1LaZBIa6wB0qsVuO6pRR9jfYZJIH2piAU=";
   };
 }