qenya/birdsong
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity
13 commits 4 branches 0 tags 100 KiB
Nix 100%
Find a file
Katherina Walshe-Grey fa0f559d3b Remove deprecated 
See https://github.com/NixOS/nixpkgs/pull/312472.

This nixpkgs PR (targeting 24.11) broke merging of attributes in the
deprecated attrset. As the deprecated attrset is likely to be removed
altogether soon, instead of reporting upstream, and all our >24.05
systems are in randomcat's repo for now, we judged that the course of
least resistance was just to patch the config on a separate branch
until 24.11 is released.
2024-11-11 20:32:38 +00:00
.gitignore Initial commit 2024-07-25 07:26:47 +00:00
flake.nix Fix flake module import 2024-07-25 12:25:00 -04:00
hosts.nix add kalessin, kilgharrah 2024-11-05 19:12:20 +00:00
LICENSE Initial commit 2024-07-25 07:26:47 +00:00
module.nix package as flake 2024-07-25 12:53:46 +01:00
peering.nix Remove deprecated 2024-11-11 20:32:38 +00:00
README.md improve docs 2024-07-25 12:53:52 +01:00

README.md

birdsong

A private WireGuard VPN.

Connecting a new host

  1. Generate a new WireGuard keypair with the wg binary (packaged on many distros as wireguard-tools.) There are instructions on the Arch wiki.

  2. Add the host to hosts.nix, being sure to read the documentation carefully.

  3. For a NixOS host:

    1. Install the NixOS module as described below.
    2. Enable the birdsong service in your NixOS configuration:
    birdsong.peering = {
    enable = true;
    privateKeyFile = /path/to/wireguard/private.key;
    # This is the bare minimum - check peering.nix for other options.
    # In particular, quick fix for issues with NAT or dynamic public IPs:
    # persistentKeepalive = 23
};

  4. For a non-NixOS host:

    1. TODO

Installing the NixOS module

With plain Nix fetching

{ config, lib, pkgs, ... }:
{
  imports = [
    # ...

    (let
      birdsong = fetchgit {
        url = "https://git.qenya.tel/qenya/birdsong";
        hash = "sha256-pPrREPA7kJdfMXk0hJLbq6UGOiq+KtJo1LR4vC69vxM=";
        rev = "04e5519bf363388debfafc31285851c7816d087a";
        # This shows an example commit ID; update to the most recent and
        # recalculate the hash
      };
      in import "${birdsong}/module.nix"
    )
  ];
}

With npins

$ npins add --name birdsong git --branch main "https://git.qenya.tel/qenya/birdsong.git"

{ config, lib, pkgs, ... }:
let sources = import ./npins;
in {
  imports = [
    # ...
    (import "${sources.birdsong}/module.nix")
  ];
}

With flakes

{
  inputs.birdsong.url = "git+https://git.qenya.tel/qenya/birdsong?ref=main"

  outputs = { self, nixpkgs, birdsong, ... }: {
      # Tweak as appropriate for your hostname, platform, architecture etc.
      nixosConfigurations.your-box = nixpkgs.lib.nixosSystem {
        system = "x86_64-linux"
        modules = [
          # ...
          birdsong.nixosModules.default
        ];
      };
  };
}