networkException/katzen-cafe
1
0
Fork 0
forked from katzen-cafe/katzen-cafe
Code Pull requests Activity

regret not doing this more granularly but oh well

Browse source
This commit is contained in:
Schrottkatze 2023-05-21 12:52:04 +02:00
parent 8bb51cb919
commit 2f166efc51
7 changed files with 128 additions and 18 deletions
Download patch file Download diff file Expand all files Collapse all files

38
modules/hetzner/wan.nix Normal file
View file

@ -0,0 +1,38 @@
{ lib, config, ... }:
with lib;
let
cfg = config.modules.hetzner.wan;
in
{
options.modules.hetzner.wan = {
enable = mkEnableOption "Enable Hetzner Cloud WAN interface configuration";
macAddress = mkOption {
type = types.str;
description = "MAC Address of the WAN interface";
};
ipAddresses = mkOption {
type = types.listOf types.str;
description = "List of IP Addresses on the WAN interface";
};
};
config = mkIf cfg.enable {
systemd.network.networks."20-wan" = {
matchConfig = {
MACAddress = cfg.macAddress;
};
address = cfg.ipAddresses;
routes = [
{ routeConfig.Gateway = "fe80::1"; }
{ routeConfig = { Destination = "172.31.1.1"; }; }
{ routeConfig = { Gateway = "172.31.1.1"; GatewayOnLink = true; }; }
{ routeConfig = { Destination = "172.16.0.0/12"; Type = "unreachable"; }; }
{ routeConfig = { Destination = "192.168.0.0/16"; Type = "unreachable"; }; }
{ routeConfig = { Destination = "10.0.0.0/8"; Type = "unreachable"; }; }
{ routeConfig = { Destination = "fc00::/7"; Type = "unreachable"; }; }
];
};
};
}