lois/Fediversity
1
0
Fork 0
forked from Fediversity/Fediversity
Code Pull requests Activity

update VPN docs to show WireGuard config on NixOS

Browse source
This commit is contained in:
Valentin Gagarin 2025-01-23 17:26:33 +01:00
parent 42e0f42f63
commit bdf43717fa
1 changed files with 19 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

21
deployment/proxmox/README.org → deployment/README.org
View file

@ -4,8 +4,25 @@
- Proxmox API doc :: https://pve.proxmox.com/pve-docs/api-viewer - Proxmox API doc :: https://pve.proxmox.com/pve-docs/api-viewer
- Fediversity Proxmox :: - Fediversity Proxmox ::
- http://192.168.51.81:8006/. - http://192.168.51.81:8006/.
- It is only accessible via Procolix's VPN; see with Kevin. - It is only accessible via Procolix's VPN:
- You will need identifiers. Also see with Kevin. Select “Promox VE authentication server”. - Get credentials for the VPN portal and Proxmox from [Kevin](https://git.fediversity.eu/kevin).
- Log in to the [VPN portal](https://vpn.fediversity.eu/vpn-user-portal/home)
- Create a **New Configuration**:
- Select **WireGuard (UDP)**
- Enter some name, e.g. `fediversity`
- Click Download
- Write the WireGuard configuration to a file `fediversity-vpn.config` next to your NixOS configuration
- Add that file's path to `.git/info/exclude` and make sure it doesn't otherwise leak (for example, use [`agenix`](https://github.com/ryantm/agenix) to manage secrets)
- To your NixOS configuration, add
```nix
{ ... }:
{
networking.wg-quick.interfaces = {
fediversity.configFile = toString ./fediversity-vpn.config;
};
}
```
- Select “Promox VE authentication server”.
- Ignore “You do not have a valid subscription” message. - Ignore “You do not have a valid subscription” message.
* Basic terminology * Basic terminology
- Node :: physical host - Node :: physical host