diff --git a/machines/modules/malobeo/peers.nix b/machines/modules/malobeo/peers.nix index febf4c5f..5f2de9bc 100644 --- a/machines/modules/malobeo/peers.nix +++ b/machines/modules/malobeo/peers.nix @@ -2,7 +2,7 @@ "vpn" = { role = "server"; publicIp = "5.9.153.217"; - address = [ "10.100.0.1/24" ]; + address = "10.100.0.1"; allowedIPs = [ "10.100.0.0/24" ]; listenPort = 51821; publicKey = "hF9H10Y8Ar7zvZXFoNM8LSoaYFgPCXv30c54SSEucX4="; @@ -11,35 +11,35 @@ "celine" = { role = "client"; - address = [ "10.100.0.2/24" ]; + address = "10.100.0.2"; allowedIPs = [ "10.100.0.2/32" ]; publicKey = "Jgx82tSOmZJS4sm1o8Eci9ahaQdQir2PLq9dBqsWZw4="; }; "desktop" = { role = "client"; - address = [ "10.100.0.3/24" ]; + address = "10.100.0.3"; allowedIPs = [ "10.100.0.3/32" ]; publicKey = "FtY2lcdWcw+nvtydOOUDyaeh/xkaqHA8y9GXzqU0Am0="; }; "atlan-pc" = { role = "client"; - address = [ "10.100.0.5/24" ]; + address = "10.100.0.5"; allowedIPs = [ "10.100.0.5/32" ]; publicKey = "TrJ4UAF//zXdaLwZudI78L+rTC36zEDodTDOWNS4Y1Y="; }; "hetzner" = { role = "client"; - address = [ "10.100.0.6/24" ]; + address = "10.100.0.6"; allowedIPs = [ "10.100.0.6/32" ]; publicKey = "csRzgwtnzmSLeLkSwTwEOrdKq55UOxZacR5D3GopCTQ="; }; "fanny" = { role = "client"; - address = [ "10.100.0.101/24" ]; + address = "10.100.0.101"; allowedIPs = [ "10.100.0.101/32" ]; publicKey = "3U59F6T1s/1LaZBIa6wB0qsVuO6pRR9jfYZJIH2piAU="; }; diff --git a/machines/modules/malobeo/wireguard.nix b/machines/modules/malobeo/wireguard.nix index b2a534f8..6c5a3209 100644 --- a/machines/modules/malobeo/wireguard.nix +++ b/machines/modules/malobeo/wireguard.nix @@ -70,7 +70,7 @@ in interfaces = { malovpn = { mtu = 1340; #seems to be necessary to proxypass nginx traffic through vpn - address = myPeer.address; + address = [ "${myPeer.address}/24" ]; autostart = cfg.autostart; listenPort = mkIf (myPeer.role == "server") myPeer.listenPort;