diff --git a/machines/lucia/wireguard.nix b/machines/lucia/wireguard.nix
index 2e533c0..d000b62 100644
--- a/machines/lucia/wireguard.nix
+++ b/machines/lucia/wireguard.nix
@@ -1,5 +1,7 @@
 {config, pkgs, ...}:
 {
+  sops.secrets.wireguard_private = {};
+
   # enable NAT
   networking.nat.enable = true;
   networking.nat.externalInterface = "eth0";
@@ -42,7 +44,6 @@
         { # Feel free to give a meaningfull name
           # Public key of the peer (not a file path).
           publicKey = "SfokXbgmvSmodgPFoVHjwmHE3nriQ3OTQ+hISU/3eW4=";
-          # To decrypt the private key to use
 
           # List of IPs assigned to this peer within the tunnel subnet. Used to configure routing.
           allowedIPs = [ "10.100.0.2/32" ];