diff options
author | Jon Santmyer <jon@jonsantmyer.com> | 2023-09-23 18:17:48 -0400 |
---|---|---|
committer | Jon Santmyer <jon@jonsantmyer.com> | 2023-09-23 18:17:48 -0400 |
commit | 5d738414d3056171ac5ccb34445db2d79dd792f1 (patch) | |
tree | cfb480c98d930d32b58bcce72de525a47084ff9d | |
parent | 58eee0458fe2c6976a3982c5b9a3e4919f13adcb (diff) | |
download | nix-config-5d738414d3056171ac5ccb34445db2d79dd792f1.tar.gz nix-config-5d738414d3056171ac5ccb34445db2d79dd792f1.tar.bz2 nix-config-5d738414d3056171ac5ccb34445db2d79dd792f1.zip |
add openvpn config for my mullad vpn stuff
-rw-r--r-- | .gitignore | 1 | ||||
-rw-r--r-- | home/jon/home.nix | 3 | ||||
-rw-r--r-- | programs/openvpn.nix | 10 | ||||
-rw-r--r-- | systems/default.nix | 7 |
4 files changed, 20 insertions, 1 deletions
diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..db2fc0d --- /dev/null +++ b/.gitignore @@ -0,0 +1 @@ +secrets diff --git a/home/jon/home.nix b/home/jon/home.nix index 7957beb..a53fdd5 100644 --- a/home/jon/home.nix +++ b/home/jon/home.nix @@ -16,6 +16,8 @@ in ../../programs/neovim.nix ../../programs/firefox.nix ../../programs/newsboat.nix + + ../../programs/openvpn.nix ]; home.packages = with pkgs; [ @@ -23,6 +25,7 @@ in hunspell hunspellDicts.en_US + (pass.withExtensions (exts: [ exts.pass-otp ])) thefuck mpc-cli pavucontrol diff --git a/programs/openvpn.nix b/programs/openvpn.nix new file mode 100644 index 0000000..5f1c198 --- /dev/null +++ b/programs/openvpn.nix @@ -0,0 +1,10 @@ +{ pkgs, ... }: +{ + services.openvpn = { + servers = { + MulladVPN-US-Miami = { + config = builtins.readFile ../secrets/mullvad_us_mia/mullvad_us_mia.conf + }; + }; + }; +} diff --git a/systems/default.nix b/systems/default.nix index c10c94e..8248e36 100644 --- a/systems/default.nix +++ b/systems/default.nix @@ -140,7 +140,12 @@ audio_output { # List services that you want to enable: # Enable the OpenSSH daemon. - # services.openssh.enable = true; + services.openssh.enable = true; + + environment.shellInit = '' +gpg-connect-agent /bye +export SSH_AUTH_SOCK=$(gpgconf --list-dirs agent-ssh-socket) + ''; # Open ports in the firewall. # networking.firewall.allowedTCPPorts = [ ... ]; |