nix-config/hosts/m3-r1/services/containers/wireguard.nix

{
  config,
  outputs,
  ...
}: {
  virtualisation.oci-containers.containers."wireguard" = {
    image = "docker.io/weejewel/wg-easy";
    environment = {
      WG_HOST = "wg.lanakk.com";
      WG_DEFAULT_DNS = "10.88.0.1:5353";
    };
    ports = ["3007:51821/tcp" "51820:51820/udp"];
    volumes = ["wireguard_data:/etc/wireguard"];
    extraOptions = [
      "--cap-add=NET_ADMIN"
      "--cap-add=SYS_MODULE"
      "--sysctl=net.ipv4.conf.all.src_valid_mark=1"
      "--sysctl=net.ipv4.ip_forward=1"
      "--ip=10.88.0.17"
    ];
  };
}
first commit 2024-05-15 09:25:27 +00:00			`{`
			`config,`
			`outputs,`
			`...`
			`}: {`
			`virtualisation.oci-containers.containers."wireguard" = {`
			`image = "docker.io/weejewel/wg-easy";`
			`environment = {`
			`WG_HOST = "wg.lanakk.com";`
			`WG_DEFAULT_DNS = "10.88.0.1:5353";`
			`};`
			`ports = ["3007:51821/tcp" "51820:51820/udp"];`
			`volumes = ["wireguard_data:/etc/wireguard"];`
			`extraOptions = [`
			`"--cap-add=NET_ADMIN"`
			`"--cap-add=SYS_MODULE"`
			`"--sysctl=net.ipv4.conf.all.src_valid_mark=1"`
			`"--sysctl=net.ipv4.ip_forward=1"`
			`"--ip=10.88.0.17"`
			`];`
			`};`
			`}`