NixOS Wiki

WireGuard: Difference between revisions

← Older editNewer edit →
VisualWikitext
Tie-ling (talk | contribs)
69 edits
Peer setup: added permission info
Tie-ling (talk | contribs)
69 edits
Peer setup: fixed config location
Line 398: Line 398:
         # add RouteTable=main
         # add RouteTable=main
         RouteTable = "main";
         RouteTable = "main";
        # FirewallMark marks all packets send and received by wg0
        # with the number 42, which can be used to define policy rules on these packets.
        FirewallMark = 42;


         PrivateKeyFile = config.age.secrets.wg-key-vps.path;
         PrivateKeyFile = config.age.secrets.wg-key-vps.path;
Line 414: Line 418:
           # RouteTable in wireguardConfig will then be ignored.
           # RouteTable in wireguardConfig will then be ignored.
           # RouteTable = 1000;
           # RouteTable = 1000;
          # FirewallMark marks all packets send and received by wg0
          # with the number 42, which can be used to define policy rules on these packets.
          FirewallMark = 42;
         }
         }
       ];
       ];
Retrieved from "https://wiki.nixos.org/wiki/WireGuard"