Try tailscale

2023-11-27 21:44:04 -08:00 · 2023-11-27 21:44:04 -08:00 · a2e5f43a1f
commit a2e5f43a1f
parent aa79162e2c
17 changed files with 50 additions and 80 deletions
--- a/linux/blitzar/default.nix
+++ b/linux/blitzar/default.nix
@ -12,6 +12,7 @@
    ./network.nix
    ./locale.nix
    ./syncthing.nix
+    ./tailscale.nix
    ./zfs.nix
    ../../common
  ];
--- a/linux/blitzar/gui.nix
+++ b/linux/blitzar/gui.nix
@ -70,11 +70,6 @@
  };

  programs = {
-    clash-verge = {
-      enable = true;
-      tunMode = true;
-      autoStart = true;
-    };
    dconf.enable = true;
    steam.enable = true;
  };
--- a/linux/blitzar/network.nix
+++ b/linux/blitzar/network.nix
@ -7,17 +7,7 @@
      wifi.backend = "iwd";
    };
    nftables.enable = true;
-    wireguard.interfaces.wgb = {
-      ips = [ "10.32.54.2/32" ];
-      peers = [{
-        allowedIPs = [ "10.32.54.0/24" ];
-        endpoint = "${const.domain}:${toString const.port.wireguard-server}";
-        publicKey = "0j8+alXU/f2UgWN61R6+Wjs9xelGRwpSbe5NyOwWlF4=";
-      }];
-      privateKeyFile = config.sops.secrets."wireguard/${config.networking.hostName}".path;
-    };
    wireless.iwd.enable = true;
  };
  services.resolved.enable = true;
-  sops.secrets."wireguard/${config.networking.hostName}" = { };
 }
--- a/linux/blitzar/tailscale.nix
+++ b/linux/blitzar/tailscale.nix
@ -0,0 +1,7 @@
+{ ... }: {
+  services.tailscale = {
+    enable = true;
+    port = 22276;
+    useRoutingFeatures = "client";
+  };
+}