[fanny] add to malovpn

machines/configuration.nix

@@ -117,6 +117,7 @@ in
     system = "x86_64-linux";
     specialArgs.inputs = inputs;
     modules = defaultModules ++ [
+      self.nixosModules.malobeo.vpn
       ./fanny/configuration.nix
     ];
   };

machines/fanny/configuration.nix

@@ -1,9 +1,11 @@
-{ inputs, pkgs, ... }:
+{ inputs, config, ... }:
 let
   sshKeys = import ../ssh_keys.nix;
 in
 {
   sops.defaultSopsFile = ./secrets.yaml;
+  sops.secrets.wg_private = {};
+
   imports =
     [ # Include the results of the hardware scan.
       #./hardware-configuration.nix
@@ -43,6 +45,12 @@ in
     ethernetDrivers = ["r8169"];
   };
 
+  services.malobeo.vpn = {
+    enable = true;
+    name = "vpn";
+    privateKeyFile = config.sops.secrets.wg_private.path;
+  };
+
   services.tor = {
     enable = true;
     client.enable = true;

machines/modules/malobeo/peers.nix

@@ -28,4 +28,11 @@
     allowedIPs = [ "10.100.0.0/24" ];
     publicKey = "TrJ4UAF//zXdaLwZudI78L+rTC36zEDodTDOWNS4Y1Y=";
   };
+
+  "fanny" = {
+    role = "client";
+    address = [ "10.100.0.101/24" ];
+    allowedIPs = [ "10.100.0.0/24" ];
+    publicKey = "3U59F6T1s/1LaZBIa6wB0qsVuO6pRR9jfYZJIH2piAU=";
+  };
 }