From f8dcf9d781632f6733a4a033a5e95df785ac619d Mon Sep 17 00:00:00 2001
From: Dmitriy Pleshevskiy <dmitriy@pleshevski.ru>
Date: Fri, 31 Jan 2025 10:01:47 +0300
Subject: [PATCH] nixos/wireguard: move default interface addrs to the secret
 file, add more hosts

---
 modules/nixos/services/vpn/wireguard/client.nix   |   8 +-------
 .../wireguard/defaultInterfaceAddrs.secret.nix    | Bin 0 -> 159 bytes
 2 files changed, 1 insertion(+), 7 deletions(-)
 create mode 100644 modules/nixos/services/vpn/wireguard/defaultInterfaceAddrs.secret.nix

diff --git a/modules/nixos/services/vpn/wireguard/client.nix b/modules/nixos/services/vpn/wireguard/client.nix
index c1cfb83..226482d 100644
--- a/modules/nixos/services/vpn/wireguard/client.nix
+++ b/modules/nixos/services/vpn/wireguard/client.nix
@@ -3,13 +3,7 @@
 let
   cfg = config.local.services.vpn.wireguard;
 
-  addrsViaDefaultInterface = [
-    # cache.nixos.org
-    "151.101.86.217/32"
-    "146.75.118.217/32"
-    # tbank.ru
-    "178.248.236.218/32"
-  ];
+  addrsViaDefaultInterface = import ./defaultInterfaceAddrs.secret.nix;
 in
 {
   options.local.services.vpn.wireguard = with lib; {
diff --git a/modules/nixos/services/vpn/wireguard/defaultInterfaceAddrs.secret.nix b/modules/nixos/services/vpn/wireguard/defaultInterfaceAddrs.secret.nix
new file mode 100644
index 0000000000000000000000000000000000000000..fd1ac77d0b473bf4460df6ce857c768360db5f28
GIT binary patch
literal 159
zcmV;Q0AT+BM@dveQdv+`08)Ub0pB5b*oHEHt%e$Uv265}s%{};=Dx=9><XBpoPkE8
z^wv9aX=l|oTCq4YitXvH$t=$pj1^Pal;kdexNq5sdIR`?E1H3nOdf!N>nSc1d+Jl%
z^cUe%a09Sw8N9MS84cFH(8b5?BAAt!auZng*u>w%Ngk~zMm?={1m64+;xwXJC@S{Z
N=zW(dybiL~re_#lPj>(S

literal 0
HcmV?d00001