From 8081d299c1fb163869f250b55caacd70fbab6efa Mon Sep 17 00:00:00 2001 From: Madeleine Sydney Date: Mon, 24 Mar 2025 22:26:13 -0600 Subject: [PATCH] feat(deertopia): Wireguard+Mullvad --- hosts/deertopia/configuration.nix | 1 + modules/nixos/deertopia/mullvad.nix | 84 +++++++++++++++++++ .../deertopia/mullvad/us-atl-wg-001.conf | 12 +++ .../deertopia/mullvad/us-atl-wg-002.conf | 12 +++ .../deertopia/mullvad/us-atl-wg-201.conf | 12 +++ .../deertopia/mullvad/us-atl-wg-202.conf | 12 +++ .../deertopia/mullvad/us-atl-wg-203.conf | 12 +++ .../deertopia/mullvad/us-atl-wg-204.conf | 12 +++ .../deertopia/mullvad/us-atl-wg-301.conf | 12 +++ .../deertopia/mullvad/us-atl-wg-302.conf | 12 +++ .../deertopia/mullvad/us-atl-wg-303.conf | 12 +++ .../deertopia/mullvad/us-atl-wg-304.conf | 12 +++ .../deertopia/mullvad/us-atl-wg-305.conf | 12 +++ .../deertopia/mullvad/us-atl-wg-306.conf | 12 +++ .../deertopia/mullvad/us-bos-wg-001.conf | 12 +++ .../deertopia/mullvad/us-bos-wg-002.conf | 12 +++ .../deertopia/mullvad/us-bos-wg-101.conf | 12 +++ .../deertopia/mullvad/us-bos-wg-102.conf | 12 +++ .../deertopia/mullvad/us-chi-wg-201.conf | 12 +++ .../deertopia/mullvad/us-chi-wg-202.conf | 12 +++ .../deertopia/mullvad/us-chi-wg-203.conf | 12 +++ .../deertopia/mullvad/us-chi-wg-301.conf | 12 +++ .../deertopia/mullvad/us-chi-wg-302.conf | 12 +++ .../deertopia/mullvad/us-chi-wg-303.conf | 12 +++ .../deertopia/mullvad/us-chi-wg-304.conf | 12 +++ .../deertopia/mullvad/us-chi-wg-305.conf | 12 +++ .../deertopia/mullvad/us-chi-wg-306.conf | 12 +++ .../deertopia/mullvad/us-chi-wg-307.conf | 12 +++ .../deertopia/mullvad/us-chi-wg-308.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-001.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-002.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-003.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-301.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-302.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-303.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-401.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-402.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-403.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-502.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-503.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-504.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-505.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-506.conf | 12 +++ .../deertopia/mullvad/us-dal-wg-507.conf | 12 +++ .../deertopia/mullvad/us-den-wg-101.conf | 12 +++ .../deertopia/mullvad/us-den-wg-102.conf | 12 +++ .../deertopia/mullvad/us-den-wg-103.conf | 12 +++ .../deertopia/mullvad/us-den-wg-201.conf | 12 +++ .../deertopia/mullvad/us-den-wg-202.conf | 12 +++ .../deertopia/mullvad/us-den-wg-203.conf | 12 +++ .../deertopia/mullvad/us-den-wg-204.conf | 12 +++ .../deertopia/mullvad/us-den-wg-205.conf | 12 +++ .../deertopia/mullvad/us-den-wg-206.conf | 12 +++ .../deertopia/mullvad/us-den-wg-207.conf | 12 +++ .../deertopia/mullvad/us-den-wg-208.conf | 12 +++ .../deertopia/mullvad/us-det-wg-001.conf | 12 +++ .../deertopia/mullvad/us-det-wg-002.conf | 12 +++ .../deertopia/mullvad/us-hou-wg-001.conf | 12 +++ .../deertopia/mullvad/us-hou-wg-002.conf | 12 +++ .../deertopia/mullvad/us-hou-wg-003.conf | 12 +++ .../deertopia/mullvad/us-hou-wg-004.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-101.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-102.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-103.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-201.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-202.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-203.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-402.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-403.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-404.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-405.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-406.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-407.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-408.conf | 12 +++ .../deertopia/mullvad/us-lax-wg-409.conf | 12 +++ .../deertopia/mullvad/us-mia-wg-001.conf | 12 +++ .../deertopia/mullvad/us-mia-wg-002.conf | 12 +++ .../deertopia/mullvad/us-mia-wg-003.conf | 12 +++ .../deertopia/mullvad/us-mia-wg-101.conf | 12 +++ .../deertopia/mullvad/us-mia-wg-102.conf | 12 +++ .../deertopia/mullvad/us-mia-wg-103.conf | 12 +++ .../deertopia/mullvad/us-mia-wg-301.conf | 12 +++ .../deertopia/mullvad/us-mia-wg-302.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-301.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-302.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-303.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-401.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-402.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-403.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-404.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-405.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-406.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-501.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-502.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-503.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-504.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-505.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-506.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-601.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-602.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-603.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-604.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-605.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-606.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-701.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-702.conf | 12 +++ .../deertopia/mullvad/us-nyc-wg-703.conf | 12 +++ .../deertopia/mullvad/us-phx-wg-101.conf | 12 +++ .../deertopia/mullvad/us-phx-wg-102.conf | 12 +++ .../deertopia/mullvad/us-phx-wg-103.conf | 12 +++ .../deertopia/mullvad/us-qas-wg-001.conf | 12 +++ .../deertopia/mullvad/us-qas-wg-002.conf | 12 +++ .../deertopia/mullvad/us-qas-wg-003.conf | 12 +++ .../deertopia/mullvad/us-qas-wg-004.conf | 12 +++ .../deertopia/mullvad/us-qas-wg-101.conf | 12 +++ .../deertopia/mullvad/us-qas-wg-102.conf | 12 +++ .../deertopia/mullvad/us-qas-wg-103.conf | 12 +++ .../deertopia/mullvad/us-rag-wg-201.conf | 12 +++ .../deertopia/mullvad/us-rag-wg-202.conf | 12 +++ .../deertopia/mullvad/us-rag-wg-203.conf | 12 +++ .../deertopia/mullvad/us-rag-wg-204.conf | 12 +++ .../deertopia/mullvad/us-rag-wg-205.conf | 12 +++ .../deertopia/mullvad/us-rag-wg-206.conf | 12 +++ .../deertopia/mullvad/us-rag-wg-207.conf | 12 +++ .../deertopia/mullvad/us-rag-wg-208.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-001.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-002.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-003.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-101.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-102.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-103.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-301.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-302.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-401.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-402.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-403.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-404.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-405.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-406.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-407.conf | 12 +++ .../deertopia/mullvad/us-sea-wg-408.conf | 12 +++ .../deertopia/mullvad/us-sjc-wg-001.conf | 12 +++ .../deertopia/mullvad/us-sjc-wg-002.conf | 12 +++ .../deertopia/mullvad/us-sjc-wg-003.conf | 12 +++ .../deertopia/mullvad/us-sjc-wg-301.conf | 12 +++ .../deertopia/mullvad/us-sjc-wg-302.conf | 12 +++ .../deertopia/mullvad/us-sjc-wg-303.conf | 12 +++ .../deertopia/mullvad/us-sjc-wg-401.conf | 12 +++ .../deertopia/mullvad/us-sjc-wg-402.conf | 12 +++ .../deertopia/mullvad/us-slc-wg-201.conf | 12 +++ .../deertopia/mullvad/us-slc-wg-202.conf | 12 +++ .../deertopia/mullvad/us-slc-wg-203.conf | 12 +++ .../deertopia/mullvad/us-slc-wg-204.conf | 12 +++ .../deertopia/mullvad/us-txc-wg-001.conf | 12 +++ .../deertopia/mullvad/us-txc-wg-002.conf | 12 +++ .../deertopia/mullvad/us-uyk-wg-101.conf | 12 +++ .../deertopia/mullvad/us-uyk-wg-102.conf | 12 +++ .../deertopia/mullvad/us-uyk-wg-103.conf | 12 +++ .../deertopia/mullvad/us-was-wg-001.conf | 12 +++ .../deertopia/mullvad/us-was-wg-002.conf | 12 +++ secrets.yaml | 6 +- 161 files changed, 1984 insertions(+), 3 deletions(-) create mode 100644 modules/nixos/deertopia/mullvad.nix create mode 100644 modules/nixos/deertopia/mullvad/us-atl-wg-001.conf create mode 100644 modules/nixos/deertopia/mullvad/us-atl-wg-002.conf create mode 100644 modules/nixos/deertopia/mullvad/us-atl-wg-201.conf create mode 100644 modules/nixos/deertopia/mullvad/us-atl-wg-202.conf create mode 100644 modules/nixos/deertopia/mullvad/us-atl-wg-203.conf create mode 100644 modules/nixos/deertopia/mullvad/us-atl-wg-204.conf create mode 100644 modules/nixos/deertopia/mullvad/us-atl-wg-301.conf create mode 100644 modules/nixos/deertopia/mullvad/us-atl-wg-302.conf create mode 100644 modules/nixos/deertopia/mullvad/us-atl-wg-303.conf create mode 100644 modules/nixos/deertopia/mullvad/us-atl-wg-304.conf create mode 100644 modules/nixos/deertopia/mullvad/us-atl-wg-305.conf create mode 100644 modules/nixos/deertopia/mullvad/us-atl-wg-306.conf create mode 100644 modules/nixos/deertopia/mullvad/us-bos-wg-001.conf create mode 100644 modules/nixos/deertopia/mullvad/us-bos-wg-002.conf create mode 100644 modules/nixos/deertopia/mullvad/us-bos-wg-101.conf create mode 100644 modules/nixos/deertopia/mullvad/us-bos-wg-102.conf create mode 100644 modules/nixos/deertopia/mullvad/us-chi-wg-201.conf create mode 100644 modules/nixos/deertopia/mullvad/us-chi-wg-202.conf create mode 100644 modules/nixos/deertopia/mullvad/us-chi-wg-203.conf create mode 100644 modules/nixos/deertopia/mullvad/us-chi-wg-301.conf create mode 100644 modules/nixos/deertopia/mullvad/us-chi-wg-302.conf create mode 100644 modules/nixos/deertopia/mullvad/us-chi-wg-303.conf create mode 100644 modules/nixos/deertopia/mullvad/us-chi-wg-304.conf create mode 100644 modules/nixos/deertopia/mullvad/us-chi-wg-305.conf create mode 100644 modules/nixos/deertopia/mullvad/us-chi-wg-306.conf create mode 100644 modules/nixos/deertopia/mullvad/us-chi-wg-307.conf create mode 100644 modules/nixos/deertopia/mullvad/us-chi-wg-308.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-001.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-002.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-003.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-301.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-302.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-303.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-401.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-402.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-403.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-502.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-503.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-504.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-505.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-506.conf create mode 100644 modules/nixos/deertopia/mullvad/us-dal-wg-507.conf create mode 100644 modules/nixos/deertopia/mullvad/us-den-wg-101.conf create mode 100644 modules/nixos/deertopia/mullvad/us-den-wg-102.conf create mode 100644 modules/nixos/deertopia/mullvad/us-den-wg-103.conf create mode 100644 modules/nixos/deertopia/mullvad/us-den-wg-201.conf create mode 100644 modules/nixos/deertopia/mullvad/us-den-wg-202.conf create mode 100644 modules/nixos/deertopia/mullvad/us-den-wg-203.conf create mode 100644 modules/nixos/deertopia/mullvad/us-den-wg-204.conf create mode 100644 modules/nixos/deertopia/mullvad/us-den-wg-205.conf create mode 100644 modules/nixos/deertopia/mullvad/us-den-wg-206.conf create mode 100644 modules/nixos/deertopia/mullvad/us-den-wg-207.conf create mode 100644 modules/nixos/deertopia/mullvad/us-den-wg-208.conf create mode 100644 modules/nixos/deertopia/mullvad/us-det-wg-001.conf create mode 100644 modules/nixos/deertopia/mullvad/us-det-wg-002.conf create mode 100644 modules/nixos/deertopia/mullvad/us-hou-wg-001.conf create mode 100644 modules/nixos/deertopia/mullvad/us-hou-wg-002.conf create mode 100644 modules/nixos/deertopia/mullvad/us-hou-wg-003.conf create mode 100644 modules/nixos/deertopia/mullvad/us-hou-wg-004.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-101.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-102.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-103.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-201.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-202.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-203.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-402.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-403.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-404.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-405.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-406.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-407.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-408.conf create mode 100644 modules/nixos/deertopia/mullvad/us-lax-wg-409.conf create mode 100644 modules/nixos/deertopia/mullvad/us-mia-wg-001.conf create mode 100644 modules/nixos/deertopia/mullvad/us-mia-wg-002.conf create mode 100644 modules/nixos/deertopia/mullvad/us-mia-wg-003.conf create mode 100644 modules/nixos/deertopia/mullvad/us-mia-wg-101.conf create mode 100644 modules/nixos/deertopia/mullvad/us-mia-wg-102.conf create mode 100644 modules/nixos/deertopia/mullvad/us-mia-wg-103.conf create mode 100644 modules/nixos/deertopia/mullvad/us-mia-wg-301.conf create mode 100644 modules/nixos/deertopia/mullvad/us-mia-wg-302.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-301.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-302.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-303.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-401.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-402.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-403.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-404.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-405.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-406.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-501.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-502.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-503.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-504.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-505.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-506.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-601.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-602.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-603.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-604.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-605.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-606.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-701.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-702.conf create mode 100644 modules/nixos/deertopia/mullvad/us-nyc-wg-703.conf create mode 100644 modules/nixos/deertopia/mullvad/us-phx-wg-101.conf create mode 100644 modules/nixos/deertopia/mullvad/us-phx-wg-102.conf create mode 100644 modules/nixos/deertopia/mullvad/us-phx-wg-103.conf create mode 100644 modules/nixos/deertopia/mullvad/us-qas-wg-001.conf create mode 100644 modules/nixos/deertopia/mullvad/us-qas-wg-002.conf create mode 100644 modules/nixos/deertopia/mullvad/us-qas-wg-003.conf create mode 100644 modules/nixos/deertopia/mullvad/us-qas-wg-004.conf create mode 100644 modules/nixos/deertopia/mullvad/us-qas-wg-101.conf create mode 100644 modules/nixos/deertopia/mullvad/us-qas-wg-102.conf create mode 100644 modules/nixos/deertopia/mullvad/us-qas-wg-103.conf create mode 100644 modules/nixos/deertopia/mullvad/us-rag-wg-201.conf create mode 100644 modules/nixos/deertopia/mullvad/us-rag-wg-202.conf create mode 100644 modules/nixos/deertopia/mullvad/us-rag-wg-203.conf create mode 100644 modules/nixos/deertopia/mullvad/us-rag-wg-204.conf create mode 100644 modules/nixos/deertopia/mullvad/us-rag-wg-205.conf create mode 100644 modules/nixos/deertopia/mullvad/us-rag-wg-206.conf create mode 100644 modules/nixos/deertopia/mullvad/us-rag-wg-207.conf create mode 100644 modules/nixos/deertopia/mullvad/us-rag-wg-208.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-001.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-002.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-003.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-101.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-102.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-103.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-301.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-302.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-401.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-402.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-403.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-404.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-405.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-406.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-407.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sea-wg-408.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sjc-wg-001.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sjc-wg-002.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sjc-wg-003.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sjc-wg-301.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sjc-wg-302.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sjc-wg-303.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sjc-wg-401.conf create mode 100644 modules/nixos/deertopia/mullvad/us-sjc-wg-402.conf create mode 100644 modules/nixos/deertopia/mullvad/us-slc-wg-201.conf create mode 100644 modules/nixos/deertopia/mullvad/us-slc-wg-202.conf create mode 100644 modules/nixos/deertopia/mullvad/us-slc-wg-203.conf create mode 100644 modules/nixos/deertopia/mullvad/us-slc-wg-204.conf create mode 100644 modules/nixos/deertopia/mullvad/us-txc-wg-001.conf create mode 100644 modules/nixos/deertopia/mullvad/us-txc-wg-002.conf create mode 100644 modules/nixos/deertopia/mullvad/us-uyk-wg-101.conf create mode 100644 modules/nixos/deertopia/mullvad/us-uyk-wg-102.conf create mode 100644 modules/nixos/deertopia/mullvad/us-uyk-wg-103.conf create mode 100644 modules/nixos/deertopia/mullvad/us-was-wg-001.conf create mode 100644 modules/nixos/deertopia/mullvad/us-was-wg-002.conf diff --git a/hosts/deertopia/configuration.nix b/hosts/deertopia/configuration.nix index f768f66..c68f3e1 100755 --- a/hosts/deertopia/configuration.nix +++ b/hosts/deertopia/configuration.nix @@ -48,6 +48,7 @@ copyparty.enable = true; syncthing.enable = true; cache.enable = true; + mullvad.enable = true; # A simple default webpage. This should probably live somewhere else. nginx.vhosts."www" = { diff --git a/modules/nixos/deertopia/mullvad.nix b/modules/nixos/deertopia/mullvad.nix new file mode 100644 index 0000000..4a07480 --- /dev/null +++ b/modules/nixos/deertopia/mullvad.nix @@ -0,0 +1,84 @@ +{ config, lib, pkgs, options, ... }: + +# This module provides a container whose traffic is routed through Mullvad VPN. +# Other modules may configure `containers.mullvad-vpn.config` to run their +# services through the container. + +let cfg = config.sydnix.deertopia.mullvad; +in { + options.sydnix.deertopia.mullvad = { + enable = lib.mkEnableOption "Mullvad VPN"; + interface = lib.mkOption { + description = '' + The network interface to use. See the output of `ip addr show`. + ''; + type = lib.types.str; + default = "eno1"; + }; + peer = lib.mkOption { + default = "us-atl-wg-001"; + type = lib.types.str; + description = '' + The name of a Wireguard configuration file in + modules/nixos/deertopia/mullvad/, without the .conf suffix. Ideally, we + would support multiple peers without rebuilding, but... + ''; + }; + }; + + config = lib.mkIf cfg.enable { + sydnix.sops.secrets.wireguard-mullvad-key = {}; + + networking.nat = { + enable = true; + internalInterfaces = [ "ve-mullvad-vpn" ]; + externalInterface = cfg.interface; + }; + + containers.mullvad-vpn = { + # Impermanence-esque wiping of undeclared state. + ephemeral = true; + autoStart = true; + privateNetwork = true; + enableTun = true; + # These IP choices are arbitrary. + hostAddress = "192.168.100.10"; + # Counter-intuitively (IMO), the host reaches the container at *this* + # address. + localAddress = "192.168.100.11"; + + # Bind these directories to their corresponding paths on the host as to + # persist them through container reboots. + bindMounts = { + "/config/wg".hostPath = toString ./mullvad; + "/run/secrets".hostPath = "/run/secrets"; + }; + + config = { pkgs, ... }@args: lib.mkMerge [ + { + systemd.services."create-wireguard-config" = { + script = '' + if [ ! -e /wg.conf ]; then + cp "/config/wg/${cfg.peer}.conf" /wg.conf + ${pkgs.replace-secret}/bin/replace-secret \ + '{{WG_PRIVATE_KEY}}' \ + /run/secrets/wireguard-mullvad-key \ + /wg.conf + chmod 777 /wg.conf + fi + ''; + # requiredBy = [ "wg-quick0-wg0.service" ]; + requires = [ "tmp.mount" ]; + }; + + # HACK: Make sure wg starts *after* its config exists. + systemd.services."wg-quick-wg0".requires = + [ "create-wireguard-config.service" ]; + + networking.wg-quick.interfaces.wg0.configFile = "/wg.conf"; + system.stateVersion = "24.11"; + } + ]; + }; + }; +} diff --git a/modules/nixos/deertopia/mullvad/us-atl-wg-001.conf b/modules/nixos/deertopia/mullvad/us-atl-wg-001.conf new file mode 100644 index 0000000..514b795 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-atl-wg-001.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = nvyBkaEXHwyPBAm8spGB0TFzf2W5wPAl8EEuJ0t+bzs= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 45.134.140.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-atl-wg-002.conf b/modules/nixos/deertopia/mullvad/us-atl-wg-002.conf new file mode 100644 index 0000000..a38744a --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-atl-wg-002.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = ECeGYeh8CfPJO3v56ucCDdl+PlKcj2bBszUGkT+hVWQ= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 45.134.140.143:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-atl-wg-201.conf b/modules/nixos/deertopia/mullvad/us-atl-wg-201.conf new file mode 100644 index 0000000..8396560 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-atl-wg-201.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = BbW2Gm4IZEW8CrEIg71jZC9pztA/J4h1PK9lwq57ewE= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 107.150.22.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-atl-wg-202.conf b/modules/nixos/deertopia/mullvad/us-atl-wg-202.conf new file mode 100644 index 0000000..a08fdca --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-atl-wg-202.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Qnb6TdDA7IkTIISJ40W+6rZA81pb0v4D0jRZRTYNQnQ= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 104.129.24.98:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-atl-wg-203.conf b/modules/nixos/deertopia/mullvad/us-atl-wg-203.conf new file mode 100644 index 0000000..8df328b --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-atl-wg-203.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = nZQvI+2ZzDC2titokjWcojbjvn4bxHrhUzg1UK/K0nc= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 104.129.24.114:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-atl-wg-204.conf b/modules/nixos/deertopia/mullvad/us-atl-wg-204.conf new file mode 100644 index 0000000..bc6e214 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-atl-wg-204.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = rlZyrKRSLfvjUBpYD2jUkWhdWkB1RnRr+Q4bv9+nvD8= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 104.223.91.18:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-atl-wg-301.conf b/modules/nixos/deertopia/mullvad/us-atl-wg-301.conf new file mode 100644 index 0000000..ec5d535 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-atl-wg-301.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = SUO0TkKNce4tNTHB3F7PrlvkUzAQeLBSefsgbVnbTkM= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 67.213.209.116:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-atl-wg-302.conf b/modules/nixos/deertopia/mullvad/us-atl-wg-302.conf new file mode 100644 index 0000000..3c2a494 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-atl-wg-302.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = OODmjMlAuaUXGeTUzwagEiG42GF3m0ZlHh+3Ssw1Ckg= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 67.213.209.117:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-atl-wg-303.conf b/modules/nixos/deertopia/mullvad/us-atl-wg-303.conf new file mode 100644 index 0000000..5b982c2 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-atl-wg-303.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = IR4ZTWn7TBujt2nMDoB9xYISoVigWYTRyaG8mHLji1o= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 67.213.209.118:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-atl-wg-304.conf b/modules/nixos/deertopia/mullvad/us-atl-wg-304.conf new file mode 100644 index 0000000..c987ec4 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-atl-wg-304.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 1JswEeh7qEEq0oy2sQBeqg+QjNkTJRsZ/N9/CN92SCs= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 67.213.209.119:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-atl-wg-305.conf b/modules/nixos/deertopia/mullvad/us-atl-wg-305.conf new file mode 100644 index 0000000..b9dc701 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-atl-wg-305.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = wGxVyRjNKWba7RidWKab0jPpdNKQAgeLFzwx/bz3CWQ= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 67.213.209.120:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-atl-wg-306.conf b/modules/nixos/deertopia/mullvad/us-atl-wg-306.conf new file mode 100644 index 0000000..90dc699 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-atl-wg-306.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Q8oqrXk9nC9+94GLVUXJ7E8xtV10ggdzQIiQgZI3Em4= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 67.213.209.121:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-bos-wg-001.conf b/modules/nixos/deertopia/mullvad/us-bos-wg-001.conf new file mode 100644 index 0000000..4885b20 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-bos-wg-001.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = CsysTnZ0HvyYRjsKMPx60JIgy777JhD0h9WpbHbV83o= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 43.225.189.131:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-bos-wg-002.conf b/modules/nixos/deertopia/mullvad/us-bos-wg-002.conf new file mode 100644 index 0000000..2647f06 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-bos-wg-002.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = LLkA2XSBvfUeXgLdMKP+OTQeKhtGB03kKskJEwlzAE8= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 43.225.189.162:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-bos-wg-101.conf b/modules/nixos/deertopia/mullvad/us-bos-wg-101.conf new file mode 100644 index 0000000..b3c3aab --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-bos-wg-101.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = oxJ2PIqrQOmS0uiyXvnxT64E1uZnjZDWPbP/+APToAE= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 149.40.50.98:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-bos-wg-102.conf b/modules/nixos/deertopia/mullvad/us-bos-wg-102.conf new file mode 100644 index 0000000..87518a6 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-bos-wg-102.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = wcmmadJObux2/62ES+QbIO21BkU7p2I0s6n4WNZZgW0= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 149.40.50.112:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-chi-wg-201.conf b/modules/nixos/deertopia/mullvad/us-chi-wg-201.conf new file mode 100644 index 0000000..4777f83 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-chi-wg-201.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = +Xx2mJnoJ+JS11Z6g8mp6aUZV7p6DAN9ZTAzPaHakhM= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 87.249.134.1:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-chi-wg-202.conf b/modules/nixos/deertopia/mullvad/us-chi-wg-202.conf new file mode 100644 index 0000000..0f09f3b --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-chi-wg-202.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = rmN4IM0I0gF7V9503/xnQMOLsu9txl8GTqci9dgUO18= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 87.249.134.14:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-chi-wg-203.conf b/modules/nixos/deertopia/mullvad/us-chi-wg-203.conf new file mode 100644 index 0000000..0051e00 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-chi-wg-203.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = V0ilKm3bVqt0rmJ80sP0zSVK4m6O3nADi88IQAL5kjw= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 87.249.134.27:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-chi-wg-301.conf b/modules/nixos/deertopia/mullvad/us-chi-wg-301.conf new file mode 100644 index 0000000..750164e --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-chi-wg-301.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = g9Dlad9R9OcM9w1yu3gq9pQWARQBc3Muj4KfeRY1p20= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 68.235.46.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-chi-wg-302.conf b/modules/nixos/deertopia/mullvad/us-chi-wg-302.conf new file mode 100644 index 0000000..4d96bea --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-chi-wg-302.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = rEVQ7I5Ckvg44uLaSg1l085FcQvFHfM01hMfHxyAQz0= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 68.235.46.33:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-chi-wg-303.conf b/modules/nixos/deertopia/mullvad/us-chi-wg-303.conf new file mode 100644 index 0000000..63f63b6 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-chi-wg-303.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = DfmNHT84TTS6JcJJfZJwT7tZZVgKIKRJU/2AE5sJ6A4= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 68.235.46.64:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-chi-wg-304.conf b/modules/nixos/deertopia/mullvad/us-chi-wg-304.conf new file mode 100644 index 0000000..04230dd --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-chi-wg-304.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Tr2rkoiqX7bERbeLMDw9CLiTaB0dp9/Fov/Ytz3C+xY= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 68.235.46.95:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-chi-wg-305.conf b/modules/nixos/deertopia/mullvad/us-chi-wg-305.conf new file mode 100644 index 0000000..62eb657 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-chi-wg-305.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = jx/3CJiJRozty6hUTs40M/Swhfcch0z3yElmS1VKoVg= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 68.235.46.126:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-chi-wg-306.conf b/modules/nixos/deertopia/mullvad/us-chi-wg-306.conf new file mode 100644 index 0000000..5151fb1 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-chi-wg-306.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = WlEbNkNAx/186YZH/UPE6YWkMyAMxRpMRP+IqWrq+TE= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 68.235.46.157:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-chi-wg-307.conf b/modules/nixos/deertopia/mullvad/us-chi-wg-307.conf new file mode 100644 index 0000000..7a2cafa --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-chi-wg-307.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = U9UAYlVm8nXZjWPrF/vbb1P9oqSRmHo+IfK52yDYpGo= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 68.235.46.188:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-chi-wg-308.conf b/modules/nixos/deertopia/mullvad/us-chi-wg-308.conf new file mode 100644 index 0000000..e1062f6 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-chi-wg-308.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = gJsL4BfGcf2QOLGY1Std2Mjg6V2t2w7T2FScANlkJ2I= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 68.235.46.209:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-001.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-001.conf new file mode 100644 index 0000000..3dcff16 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-001.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = EAzbWMQXxJGsd8j2brhYerGB3t5cPOXqdIDFspDGSng= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.211.66:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-002.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-002.conf new file mode 100644 index 0000000..cf9ef5f --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-002.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = OYG1hxzz3kUGpVeGjx9DcCYreMO3S6tZN17iHUK+zDE= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.211.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-003.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-003.conf new file mode 100644 index 0000000..59f1e19 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-003.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = jn/i/ekJOkkRUdMj2I4ViUKd3d/LAdTQ+ICKmBy1tkM= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.211.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-301.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-301.conf new file mode 100644 index 0000000..dd0922e --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-301.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = qWBfuOXxbsSk8Pgi9lqAzpebZtCSKHvwL7ifF5iw3lc= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 96.44.191.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-302.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-302.conf new file mode 100644 index 0000000..9259849 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-302.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 8M6a88xIRG1d7pRD1qTJKKJVAYjkX6/ls8D8M1A2Zxo= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 96.44.191.146:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-303.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-303.conf new file mode 100644 index 0000000..ab05d45 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-303.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 9sg8LrGRk5XzHfMeAhgp9IbbqD1NKepHQ5FpBDZWOn0= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 96.44.189.98:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-401.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-401.conf new file mode 100644 index 0000000..1742eaa --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-401.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = xZsnCxFN7pOvx6YlTbi92copdsY5xgekTCp//VUMyhE= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 37.19.200.156:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-402.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-402.conf new file mode 100644 index 0000000..a15178a --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-402.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = sPQEji8BhxuM/Za0Q0/9aWYxyACtQF0qRpzaBLumEzo= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 37.19.200.143:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-403.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-403.conf new file mode 100644 index 0000000..13b327f --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-403.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 4s9JIhxC/D02tosXYYcgrD+pHI+C7oTAFsXzVisKjRs= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 37.19.200.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-502.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-502.conf new file mode 100644 index 0000000..d5f91e9 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-502.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 7RegQnJ70PNlB0bpICSlc/W48GCtzszhSelTdlK5QQ0= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 206.217.206.47:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-503.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-503.conf new file mode 100644 index 0000000..373dba4 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-503.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = si+P5Ef8D21CAkzh9NgrnIhbZDBcFxoYDaN6amSTkWE= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 206.217.206.67:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-504.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-504.conf new file mode 100644 index 0000000..ae9ac1d --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-504.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = YROBTYZewygT97VTgMHxEwqaUiAjAvsuwTsuh5IBH1Y= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 206.217.206.87:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-505.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-505.conf new file mode 100644 index 0000000..1f5eb51 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-505.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = bf59QZip/y9tvCF6S9pir32LuFtvWH7nayqhzplyGkQ= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 206.217.206.107:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-506.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-506.conf new file mode 100644 index 0000000..7b3babb --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-506.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = ry32nhX3WEpktDBR8CnYNbAnm3NOGBUtXmxomWZjKGU= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 206.217.206.4:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-dal-wg-507.conf b/modules/nixos/deertopia/mullvad/us-dal-wg-507.conf new file mode 100644 index 0000000..4f1e780 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-dal-wg-507.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 7v5alccqwh+9jA+hRqwc1uZIEebXs9g5i/jH29Gr5k0= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 206.217.206.16:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-den-wg-101.conf b/modules/nixos/deertopia/mullvad/us-den-wg-101.conf new file mode 100644 index 0000000..9bc5af8 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-den-wg-101.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 74U+9EQrMwVOafgXuSp8eaKG0+p4zjSsDe3J7+ojhx0= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 37.19.210.1:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-den-wg-102.conf b/modules/nixos/deertopia/mullvad/us-den-wg-102.conf new file mode 100644 index 0000000..4c83b54 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-den-wg-102.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = T44stCRbQXFCBCcpdDbZPlNHp2eZEi91ooyk0JDC21E= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 37.19.210.14:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-den-wg-103.conf b/modules/nixos/deertopia/mullvad/us-den-wg-103.conf new file mode 100644 index 0000000..ba86334 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-den-wg-103.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Az+PGHQ0xFElmRBv+PKZuRnEzKPrPtUpRD3vpxb4si4= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 37.19.210.27:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-den-wg-201.conf b/modules/nixos/deertopia/mullvad/us-den-wg-201.conf new file mode 100644 index 0000000..1041d3b --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-den-wg-201.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = MsF1hhYtyCsvPt4B8f48biVcVYd692STflhcbKwTGAw= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.68.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-den-wg-202.conf b/modules/nixos/deertopia/mullvad/us-den-wg-202.conf new file mode 100644 index 0000000..25a6cb5 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-den-wg-202.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = YP20qT+/cY/sbBhlXo6fWZlfVhRU+emQlZ1am+vUNnw= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.68.127:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-den-wg-203.conf b/modules/nixos/deertopia/mullvad/us-den-wg-203.conf new file mode 100644 index 0000000..50e309b --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-den-wg-203.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = D8TSWEfmRIm1qMS0RgO8uireFMMZCMi+XxhIJ2jPBEU= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.69.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-den-wg-204.conf b/modules/nixos/deertopia/mullvad/us-den-wg-204.conf new file mode 100644 index 0000000..cea8e9c --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-den-wg-204.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = DZcEpwNSf+6BoDcHknHBVPwAA0ZJjz7DgQ+llATpAzg= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.69.127:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-den-wg-205.conf b/modules/nixos/deertopia/mullvad/us-den-wg-205.conf new file mode 100644 index 0000000..b8cd08e --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-den-wg-205.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 0LQQJLKBZD0Wf0s0nwFfyMW0MMEKoxNPZ14ZbxkogiY= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.70.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-den-wg-206.conf b/modules/nixos/deertopia/mullvad/us-den-wg-206.conf new file mode 100644 index 0000000..e3aae58 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-den-wg-206.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Y4waCBM7GE9iOT+xl9PcZ2mNKGiawEOBv8UkH84CaAo= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.70.127:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-den-wg-207.conf b/modules/nixos/deertopia/mullvad/us-den-wg-207.conf new file mode 100644 index 0000000..9806c04 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-den-wg-207.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = nUnmeY34CDLjW4Q3TAbJQ168jVXmkY4MVAp28rmpzEc= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.71.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-den-wg-208.conf b/modules/nixos/deertopia/mullvad/us-den-wg-208.conf new file mode 100644 index 0000000..1568ff9 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-den-wg-208.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Fo6J7nLUeSnNPenB1NiPoivVod3m4fN4OE5yjafxYXY= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.71.127:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-det-wg-001.conf b/modules/nixos/deertopia/mullvad/us-det-wg-001.conf new file mode 100644 index 0000000..e776144 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-det-wg-001.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = +USmlxhnLmlNkDnBbu+rXwjUwa383e0ilYEqPkEkNHA= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 185.141.119.131:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-det-wg-002.conf b/modules/nixos/deertopia/mullvad/us-det-wg-002.conf new file mode 100644 index 0000000..00f1ff7 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-det-wg-002.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = cYqP1UqhOYuaj47e4jAbgL55h52L+ALjtML26OtBvFU= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 185.141.119.161:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-hou-wg-001.conf b/modules/nixos/deertopia/mullvad/us-hou-wg-001.conf new file mode 100644 index 0000000..0c63bab --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-hou-wg-001.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = NKscQ4mm24nsYWfpL85Cve+BKIExR0JaysldUtVSlzg= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 37.19.221.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-hou-wg-002.conf b/modules/nixos/deertopia/mullvad/us-hou-wg-002.conf new file mode 100644 index 0000000..19ac415 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-hou-wg-002.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = tzSfoiq9ZbCcE5I0Xz9kCrsWksDn0wgvaz9TiHYTmnU= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 37.19.221.143:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-hou-wg-003.conf b/modules/nixos/deertopia/mullvad/us-hou-wg-003.conf new file mode 100644 index 0000000..6051b92 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-hou-wg-003.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = fNSu30TCgbADxNKACx+5qWY6XGJOga4COmTZZE0k0R4= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 37.19.221.156:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-hou-wg-004.conf b/modules/nixos/deertopia/mullvad/us-hou-wg-004.conf new file mode 100644 index 0000000..f47fae3 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-hou-wg-004.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = NkZMYUEcHykPkAFdm3dE8l2U9P2mt58Dw6j6BWhzaCc= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 37.19.221.169:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-101.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-101.conf new file mode 100644 index 0000000..d6aa5f9 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-101.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = IDXrg8s0qYFAWcMcXFb6P/EHOESkTyotZCSlerQfyCQ= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.44.129.98:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-102.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-102.conf new file mode 100644 index 0000000..1354555 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-102.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Ldwvbs6mOxEbpXLRA3Z/qmEyJo2wVTdQ94+v3UFsbBw= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.44.129.66:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-103.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-103.conf new file mode 100644 index 0000000..cc01964 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-103.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = gabX4D/Yhut0IMl/9jRK+kMoHbkL38qaUm7r/dH5rWg= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.44.129.34:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-201.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-201.conf new file mode 100644 index 0000000..e18cc30 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-201.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = xWobY7DWTL+vL1yD4NWwbQ3V4e8qz10Yz+EFdkIjq0Y= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 169.150.203.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-202.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-202.conf new file mode 100644 index 0000000..d2154db --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-202.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = SDnciTlujuy2APFTkhzfq5X+LDi+lhfU38wI2HBCxxs= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 169.150.203.15:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-203.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-203.conf new file mode 100644 index 0000000..61a3b2e --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-203.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = W6/Yamxmfx3geWTwwtBbJe/J8UdEzOfa6M+cEpNPIwg= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 169.150.203.28:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-402.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-402.conf new file mode 100644 index 0000000..11075c1 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-402.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = EKZXvHlSDeqAjfC/m9aQR0oXfQ6Idgffa9L0DH5yaCo= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.173.66:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-403.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-403.conf new file mode 100644 index 0000000..a4f057c --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-403.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = mBqaWs6pti93U+1feyj6LRzzveNmeklancn3XuKoPWI= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.173.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-404.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-404.conf new file mode 100644 index 0000000..582549a --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-404.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = YGl+lj1tk08U9x9Z73zowUW3rk8i0nPmYkxGzNdE4VM= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.173.194:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-405.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-405.conf new file mode 100644 index 0000000..327acf5 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-405.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Pe86fNGUd+AIeaabsn7Hk4clQf1kJvxOXPykfVGjeho= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.172.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-406.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-406.conf new file mode 100644 index 0000000..256905e --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-406.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = K3KF3TCWbYcHF5XHL2zaifvQGHrPWoCjFYxDaJO71GA= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.174.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-407.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-407.conf new file mode 100644 index 0000000..202b047 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-407.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 1nGkBr+oLwK5lQcVt9vF6rGM5R3ra5bmYTGJfGIh0lk= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.172.66:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-408.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-408.conf new file mode 100644 index 0000000..ab6a67b --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-408.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 9L5cW9VuUJUS2gH6H7ln2JeCI66fMnnjLiD5UymAtlo= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.172.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-lax-wg-409.conf b/modules/nixos/deertopia/mullvad/us-lax-wg-409.conf new file mode 100644 index 0000000..a125fc9 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-lax-wg-409.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = V+LTWA5DxEVITAXqHexqBzeZo95b8r+3WR8g1FsbPQ4= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.172.194:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-mia-wg-001.conf b/modules/nixos/deertopia/mullvad/us-mia-wg-001.conf new file mode 100644 index 0000000..840ac1b --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-mia-wg-001.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = FVEKAMJqaJU2AwWn5Mg9TK9IAfJc4XDUmSzEeC/VXGs= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 45.134.142.219:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-mia-wg-002.conf b/modules/nixos/deertopia/mullvad/us-mia-wg-002.conf new file mode 100644 index 0000000..01d0ecc --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-mia-wg-002.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = H5t7PsMDnUAHrR8D2Jt3Mh6N6w43WmCzrOHShlEU+zw= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 45.134.142.206:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-mia-wg-003.conf b/modules/nixos/deertopia/mullvad/us-mia-wg-003.conf new file mode 100644 index 0000000..6dbaf76 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-mia-wg-003.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = N/3F0QvCuiWWzCwaJmnPZO53LZrKn6sr7rItecrQSQY= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 45.134.142.193:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-mia-wg-101.conf b/modules/nixos/deertopia/mullvad/us-mia-wg-101.conf new file mode 100644 index 0000000..45653c5 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-mia-wg-101.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 50/sEK7t3on/H2sunx+gzIjJI6E9/Y6gHOHQrvzsij4= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.187.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-mia-wg-102.conf b/modules/nixos/deertopia/mullvad/us-mia-wg-102.conf new file mode 100644 index 0000000..42c08f1 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-mia-wg-102.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = sJw9LzH2sunqRes2FNi8l6+bd8jqFAiYFfUGTbCXlA4= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.187.66:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-mia-wg-103.conf b/modules/nixos/deertopia/mullvad/us-mia-wg-103.conf new file mode 100644 index 0000000..8e8e8fa --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-mia-wg-103.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = TpPDIhObMTeoMVx0MvSstQaIH1EfRYqW2vzGTB+ETVk= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.187.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-mia-wg-301.conf b/modules/nixos/deertopia/mullvad/us-mia-wg-301.conf new file mode 100644 index 0000000..a3ba4d2 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-mia-wg-301.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = nCr87vBNEwrERnkcDhWENNVIMaLF+C0p3h9nqwguO2g= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 173.44.63.66:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-mia-wg-302.conf b/modules/nixos/deertopia/mullvad/us-mia-wg-302.conf new file mode 100644 index 0000000..9d30c66 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-mia-wg-302.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = voRd3Wi8W4kaEMIJMy7IBkpkAVxQkYF0VubbK1+zgR8= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 104.129.41.194:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-301.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-301.conf new file mode 100644 index 0000000..2d2695f --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-301.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = IzqkjVCdJYC1AShILfzebchTlKCqVCt/SMEXolaS3Uc= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 143.244.47.65:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-302.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-302.conf new file mode 100644 index 0000000..efcd49e --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-302.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = gH/fZJwc9iLv9fazk09J/DUWT2X7/LFXijRS15e2n34= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 143.244.47.78:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-303.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-303.conf new file mode 100644 index 0000000..72696a8 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-303.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = KRO+RzrFV92Ah+qpHgAMKZH2jtjRlmJ4ayl0gletY3c= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 143.244.47.91:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-401.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-401.conf new file mode 100644 index 0000000..b3f491a --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-401.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 4oR0oc3cyktCoQ1eygZ/EZeCNeI6eQnQJNRuBmRne2Q= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.44.136.34:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-402.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-402.conf new file mode 100644 index 0000000..8256eb9 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-402.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = /o79urfCcNSCTD4OCPNxn6qoWMchQ5Za6p6hf5cxmwE= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.44.136.66:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-403.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-403.conf new file mode 100644 index 0000000..b77c7e0 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-403.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = pFM95uwAFj62uYDkJXcAPYaPmy+nl+dd92ZLV9bWbHQ= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.44.136.98:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-404.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-404.conf new file mode 100644 index 0000000..64ee2ee --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-404.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = pCZ9NnIgAEwrDy4H/eGz8NvNcbAg7UGFTGYruyCfVwU= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.44.136.194:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-405.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-405.conf new file mode 100644 index 0000000..85020c8 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-405.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = SaxtRm9bIXJRhhIKuqTb5tMjbRQ+A12Oe6OvjCD5ehk= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.44.136.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-406.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-406.conf new file mode 100644 index 0000000..706b362 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-406.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = EinCXC++sGc1FVJsyxF/7/xzERKeZy48pSPJUIxSjyw= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.44.136.162:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-501.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-501.conf new file mode 100644 index 0000000..21526ec --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-501.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = FMNXnFgDHNTrT9o49U8bb3Z8J90LZzVJPpRzKtJM9W8= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.165.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-502.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-502.conf new file mode 100644 index 0000000..76e8799 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-502.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = cmUR4g9aIFDa5Xnp4B6Zjyp20jwgTTMgBdhcdvDV0FM= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.165.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-503.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-503.conf new file mode 100644 index 0000000..a3e3f06 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-503.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = czE6NJ8CccA5jnJkKoZGDpMXFqSudeVTzxU5scLP/H8= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.165.194:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-504.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-504.conf new file mode 100644 index 0000000..2ef9364 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-504.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = MVa5yuoYnjXJtSCeBsyvaemuaK4KFN1p78+37Nvm2m0= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.166.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-505.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-505.conf new file mode 100644 index 0000000..5322a8f --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-505.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = jrjogHbVDuPxyloBldvtB51TmebNJo+4rW2JFrN33iM= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.166.194:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-506.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-506.conf new file mode 100644 index 0000000..7267e82 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-506.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = IjdtI6sz8ZjU5tlK3eW4HAPp+GRvHErDtqxBcr8JvTM= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.165.66:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-601.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-601.conf new file mode 100644 index 0000000..fd4dca8 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-601.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = OKyEPafS1lnUTWqtVeWElkTzcmkvLi9dncBHbSyFrH8= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.185.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-602.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-602.conf new file mode 100644 index 0000000..d9f8549 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-602.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 4Lg7yQlukAMp6EX+2Ap+q4O+QIV/OEZyybtFJmN9umw= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.168.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-603.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-603.conf new file mode 100644 index 0000000..163eb35 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-603.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = s3N8Xeh6khECbgRYPk9pp5slw2uE0deOxa9rSJ6bzwE= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.168.66:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-604.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-604.conf new file mode 100644 index 0000000..c13aa51 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-604.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = FIcFPDjxfF24xBrv+W7Bcqb2wADSWd+HAWPKYo6xZEk= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.171.66:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-605.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-605.conf new file mode 100644 index 0000000..c01ca17 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-605.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 78nFhfPEjrfOxBkUf2ylM7w6upYBEcHXm93sr8CMTE4= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.171.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-606.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-606.conf new file mode 100644 index 0000000..2bd5023 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-606.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = a8+VB6Cgah7Q5mWY860VfgU/h3Zf+pMpMdHB22e1uTQ= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 146.70.168.194:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-701.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-701.conf new file mode 100644 index 0000000..53a8ee4 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-701.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = S3X2pCfD9X6c29fd4C6b86mEO0b01mc/WUCDN5OgyjM= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.162.8.3:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-702.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-702.conf new file mode 100644 index 0000000..7b5c3aa --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-702.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = O81+YN0WHF4wuWRejhPG62PGK9bv/8BQTa6Ni3fomWM= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.162.8.67:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-nyc-wg-703.conf b/modules/nixos/deertopia/mullvad/us-nyc-wg-703.conf new file mode 100644 index 0000000..bd494e1 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-nyc-wg-703.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Ycm86cSu1NKGpC+vZA6htq6YE9BUFk9wweE2/RySA1g= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.162.8.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-phx-wg-101.conf b/modules/nixos/deertopia/mullvad/us-phx-wg-101.conf new file mode 100644 index 0000000..4fd8d85 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-phx-wg-101.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Tg5LXnudnxEjf6pp7+T0QKCU9K3jzwdA1/l0negOHBk= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.54.133.98:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-phx-wg-102.conf b/modules/nixos/deertopia/mullvad/us-phx-wg-102.conf new file mode 100644 index 0000000..9e0f4ba --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-phx-wg-102.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 1BbuYcr+WcmgcUhZTJ48GxOjQW0k4iEYBnn1Axhm1yA= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.54.133.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-phx-wg-103.conf b/modules/nixos/deertopia/mullvad/us-phx-wg-103.conf new file mode 100644 index 0000000..3b8584a --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-phx-wg-103.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = aEJhNzQJYMH9VzB7bxhimyUFz3uo4mp1RD9VY3KAEWs= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.54.133.162:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-qas-wg-001.conf b/modules/nixos/deertopia/mullvad/us-qas-wg-001.conf new file mode 100644 index 0000000..67480d1 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-qas-wg-001.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = UKNLCimke54RqRdj6UFyIuBO6nv2VVpDT3vM9N25VyI= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.54.135.34:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-qas-wg-002.conf b/modules/nixos/deertopia/mullvad/us-qas-wg-002.conf new file mode 100644 index 0000000..20b24b0 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-qas-wg-002.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = UUCBSYnGq+zEDqA6Wyse3JXv8fZuqKEgavRZTnCXlBg= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.54.135.66:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-qas-wg-003.conf b/modules/nixos/deertopia/mullvad/us-qas-wg-003.conf new file mode 100644 index 0000000..9e393f8 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-qas-wg-003.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 0s0NdIzo+pq0OiHstZHqapYsdevGQGopQ5NM54g/9jo= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.54.135.98:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-qas-wg-004.conf b/modules/nixos/deertopia/mullvad/us-qas-wg-004.conf new file mode 100644 index 0000000..932e21b --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-qas-wg-004.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = TvqnL6VkJbz0KrjtHnUYWvA7zRt9ysI64LjTOx2vmm4= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.54.135.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-qas-wg-101.conf b/modules/nixos/deertopia/mullvad/us-qas-wg-101.conf new file mode 100644 index 0000000..9f33c8c --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-qas-wg-101.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = JEuuPzZE8uE53OFhd3YFiZuwwANLqwmdXWMHPUbBwnk= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 185.156.46.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-qas-wg-102.conf b/modules/nixos/deertopia/mullvad/us-qas-wg-102.conf new file mode 100644 index 0000000..f7f326b --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-qas-wg-102.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 5hlEb3AjTzVIJyYWCYvJvbgA4p25Ltfp2cYnys90LQ0= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 185.156.46.143:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-qas-wg-103.conf b/modules/nixos/deertopia/mullvad/us-qas-wg-103.conf new file mode 100644 index 0000000..c163cc4 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-qas-wg-103.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = oD9IFZsA5sync37K/sekVXaww76MwA3IvDRpR/irZWQ= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 185.156.46.156:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-rag-wg-201.conf b/modules/nixos/deertopia/mullvad/us-rag-wg-201.conf new file mode 100644 index 0000000..656dfd5 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-rag-wg-201.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = MuKjekVqBwpSizHLNwVRl4b8bwi6aTCBOshPiOOWrEQ= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.76.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-rag-wg-202.conf b/modules/nixos/deertopia/mullvad/us-rag-wg-202.conf new file mode 100644 index 0000000..b5fedea --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-rag-wg-202.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = T2diUJ97txooCDntCrB6Q29Qe0fm/hMdZDzdc9uOUgQ= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.76.127:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-rag-wg-203.conf b/modules/nixos/deertopia/mullvad/us-rag-wg-203.conf new file mode 100644 index 0000000..334761d --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-rag-wg-203.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 4BioSTLTYH1qL/oYGY/z5IZ049I7oSzs5IKoFZzrgn0= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.77.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-rag-wg-204.conf b/modules/nixos/deertopia/mullvad/us-rag-wg-204.conf new file mode 100644 index 0000000..6929eb8 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-rag-wg-204.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Tk5lPM5K5qrXPWDktHH+AvcxC+UxhGSX6aILsPi33zU= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.77.127:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-rag-wg-205.conf b/modules/nixos/deertopia/mullvad/us-rag-wg-205.conf new file mode 100644 index 0000000..fa05da1 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-rag-wg-205.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = z7vhWZ1oY+UkE7PoXF/QtofOhTNGnNfoP20al/cniyc= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.78.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-rag-wg-206.conf b/modules/nixos/deertopia/mullvad/us-rag-wg-206.conf new file mode 100644 index 0000000..b71b630 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-rag-wg-206.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = ekRrcTqihriWz4TldL2deIEbHlqwytL3pu1WV+v7zjw= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.78.127:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-rag-wg-207.conf b/modules/nixos/deertopia/mullvad/us-rag-wg-207.conf new file mode 100644 index 0000000..05e3e5e --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-rag-wg-207.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Y16tMAXHpCEExSZJ8AL5LfskKqPqIrZWeLFbSLE/piE= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.79.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-rag-wg-208.conf b/modules/nixos/deertopia/mullvad/us-rag-wg-208.conf new file mode 100644 index 0000000..f10249a --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-rag-wg-208.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = lCyIXwxSGEBSpUah0kYSyuaZuDJJB0Cwia7gv4r7XTA= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.79.127:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-001.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-001.conf new file mode 100644 index 0000000..a9aed2c --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-001.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = bZQF7VRDRK/JUJ8L6EFzF/zRw2tsqMRk6FesGtTgsC0= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 138.199.43.91:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-002.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-002.conf new file mode 100644 index 0000000..244078c --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-002.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Xt80FGN9eLy1vX3F29huj6oW2MnQt7ne3DMBpo525Qw= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 138.199.43.78:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-003.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-003.conf new file mode 100644 index 0000000..0f4e82d --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-003.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 4ke8ZSsroiI6Sp23OBbMAU6yQmdF3xU2N8CyzQXE/Qw= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 138.199.43.65:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-101.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-101.conf new file mode 100644 index 0000000..0e776be --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-101.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 200em73iD9942d9hlHonAfNXGWwFQcicBVGHeHbdxVM= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.54.131.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-102.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-102.conf new file mode 100644 index 0000000..15d4eea --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-102.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = YwwaW1/1vFJKp22Je7btEhVXTzTckxMF1qesHN4T3QA= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.54.131.162:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-103.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-103.conf new file mode 100644 index 0000000..e6a0c08 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-103.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = fU4oTJhFtwvmk0odRe9Jatc+DMh9gKz49WSzO0psCmU= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.54.131.98:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-301.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-301.conf new file mode 100644 index 0000000..a2043e8 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-301.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = ekaodfDtCmMmHBPWT04FObtHi9uxCn9mI2NB6WAsS0U= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 104.129.57.66:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-302.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-302.conf new file mode 100644 index 0000000..79af681 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-302.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Plbre6XhYWgXzdAUD94/gqSy6C9z/nD40U2gIt+MAGQ= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 173.205.93.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-401.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-401.conf new file mode 100644 index 0000000..958f05a --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-401.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = wRvkGNE3N2UklxKajU06gbBJ3Bg7KmhZsU7a5HIFBw8= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.80.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-402.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-402.conf new file mode 100644 index 0000000..9fafd36 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-402.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = NBnpCxDrc0tdX91KUm5cEmQv7BSMOZqd7dS/d7piQl0= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.80.127:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-403.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-403.conf new file mode 100644 index 0000000..15ff6d9 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-403.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = cJ8317JqMtNDvxvd/8z29lWurK/3sb5nFZuOY5mw3ys= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.81.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-404.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-404.conf new file mode 100644 index 0000000..415a2b8 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-404.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = G6+A375GVmuFCAtvwgx3SWCWhrMvdQ+cboXQ8zp2ang= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.81.127:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-405.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-405.conf new file mode 100644 index 0000000..d3dea32 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-405.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = X+efE4ntYuAEHBHU32SBMq/U0lAFEKeX5/nl3CKtrVM= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.82.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-406.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-406.conf new file mode 100644 index 0000000..1aa7d09 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-406.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = kT695K8pTGd+I6Q4a4URU2AdXN2VAtHyi7kNSRjUEiw= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.82.127:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-407.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-407.conf new file mode 100644 index 0000000..3bd58ef --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-407.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = HrhtkMqLmKtpAHiUIw7uLHwt48mDlhyLOt4+1kpNj3Y= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.83.2:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sea-wg-408.conf b/modules/nixos/deertopia/mullvad/us-sea-wg-408.conf new file mode 100644 index 0000000..f28860d --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sea-wg-408.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = tfhYXF12+7tB6bEOhqZ7eMODDv08fDMnQSBTmlau9VI= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 23.234.83.127:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sjc-wg-001.conf b/modules/nixos/deertopia/mullvad/us-sjc-wg-001.conf new file mode 100644 index 0000000..6b951e1 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sjc-wg-001.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Ow25Pdtyqbv/Y0I0myNixjJ2iljsKcH04PWvtJqbmCk= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.54.134.98:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sjc-wg-002.conf b/modules/nixos/deertopia/mullvad/us-sjc-wg-002.conf new file mode 100644 index 0000000..2d86212 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sjc-wg-002.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = aOt3gFGc0a0UMAdcxhBWX9TCnEabe2s66MHzjXU50Tc= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.54.134.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sjc-wg-003.conf b/modules/nixos/deertopia/mullvad/us-sjc-wg-003.conf new file mode 100644 index 0000000..d797d46 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sjc-wg-003.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Vim/OUBT3Bogv+FF623pAHXc/vmRwur2JKcNsLHQH1o= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 198.54.134.162:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sjc-wg-301.conf b/modules/nixos/deertopia/mullvad/us-sjc-wg-301.conf new file mode 100644 index 0000000..b523c8f --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sjc-wg-301.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = f3bMFNG3xcXRN/i0jHxo68CXFcNNlennuf1jdkPMEVM= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 142.147.89.195:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sjc-wg-302.conf b/modules/nixos/deertopia/mullvad/us-sjc-wg-302.conf new file mode 100644 index 0000000..80f1d86 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sjc-wg-302.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 8wVb4HUgmpQEa5a1Q8Ff1hTDTJVaHts487bksJVugEo= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 142.147.89.210:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sjc-wg-303.conf b/modules/nixos/deertopia/mullvad/us-sjc-wg-303.conf new file mode 100644 index 0000000..b1b7ce6 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sjc-wg-303.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 2ZQTRk/3jT+ccfG3G/QoJV3NFC4CFHQwGBCSokOvBnA= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 142.147.89.225:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sjc-wg-401.conf b/modules/nixos/deertopia/mullvad/us-sjc-wg-401.conf new file mode 100644 index 0000000..c0555b8 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sjc-wg-401.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 2q0LGwWvnV2qbNEAgOOHh4tvol5vGeQXJZDAbazCSBY= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 79.127.217.34:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-sjc-wg-402.conf b/modules/nixos/deertopia/mullvad/us-sjc-wg-402.conf new file mode 100644 index 0000000..14e2f09 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-sjc-wg-402.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = +UZsgTzYTdG3LvqpL+V9ZkwEMiFcls32YlpuI0cqDQ4= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 79.127.217.47:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-slc-wg-201.conf b/modules/nixos/deertopia/mullvad/us-slc-wg-201.conf new file mode 100644 index 0000000..b8e8b19 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-slc-wg-201.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = sSoow0tFfqSrZIUhFRaGsTvwQsUTe33RA/9PLn93Cno= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 69.4.234.9:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-slc-wg-202.conf b/modules/nixos/deertopia/mullvad/us-slc-wg-202.conf new file mode 100644 index 0000000..a3f7133 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-slc-wg-202.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = mKD4untTerTbg+1pJh3FA9zjOAOtoTHqOJzIP0lnqH4= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 69.4.234.149:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-slc-wg-203.conf b/modules/nixos/deertopia/mullvad/us-slc-wg-203.conf new file mode 100644 index 0000000..f57b2b4 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-slc-wg-203.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 2yVEeOFScneJRCVTrqCjKlKHg3J2wwOwkY28iy47J1Q= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 69.4.234.131:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-slc-wg-204.conf b/modules/nixos/deertopia/mullvad/us-slc-wg-204.conf new file mode 100644 index 0000000..9504039 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-slc-wg-204.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = SE7HGeByhTo8Ak7FGsjvrYOUJTydQ2L8fWjo17IvhSw= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 69.4.234.10:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-txc-wg-001.conf b/modules/nixos/deertopia/mullvad/us-txc-wg-001.conf new file mode 100644 index 0000000..3aca935 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-txc-wg-001.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = +OCONjBoN5RytiPy000VOzhZsiu1tSzecmc1hl/q8hI= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 79.127.222.194:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-txc-wg-002.conf b/modules/nixos/deertopia/mullvad/us-txc-wg-002.conf new file mode 100644 index 0000000..80bb584 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-txc-wg-002.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = mjv8qVNwhVKO0ePAI97CRil188uwdR/VR6ihcNY/hio= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 79.127.222.207:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-uyk-wg-101.conf b/modules/nixos/deertopia/mullvad/us-uyk-wg-101.conf new file mode 100644 index 0000000..33a721c --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-uyk-wg-101.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 25c8tyAhFiHXwp71beltk/KmAn0fsXGEl6nnNQQjmHI= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 209.54.101.130:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-uyk-wg-102.conf b/modules/nixos/deertopia/mullvad/us-uyk-wg-102.conf new file mode 100644 index 0000000..be14910 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-uyk-wg-102.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = fD/JDsMLFxEZ7awcJJB9h0mjfRlcEvwF8e7arB2fHhU= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 104.223.118.34:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-uyk-wg-103.conf b/modules/nixos/deertopia/mullvad/us-uyk-wg-103.conf new file mode 100644 index 0000000..041aac4 --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-uyk-wg-103.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = Tysz0Ii2m+DsyhcWoQWxsXUdJxu1lKln4F7ML+nWPXA= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 173.205.85.34:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-was-wg-001.conf b/modules/nixos/deertopia/mullvad/us-was-wg-001.conf new file mode 100644 index 0000000..dcdf14e --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-was-wg-001.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = qD3AH8vI8MhEVc9+0+2O8zV0Gx9FfKdy7ri3Bnpzo10= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 185.213.193.3:51820 \ No newline at end of file diff --git a/modules/nixos/deertopia/mullvad/us-was-wg-002.conf b/modules/nixos/deertopia/mullvad/us-was-wg-002.conf new file mode 100644 index 0000000..b5a8d5b --- /dev/null +++ b/modules/nixos/deertopia/mullvad/us-was-wg-002.conf @@ -0,0 +1,12 @@ +[Interface] +# Device: Calm Krill +PrivateKey = {{WG_PRIVATE_KEY}} +Address = 10.69.157.18/32,fc00:bbbb:bbbb:bb01::6:9d11/128 +DNS = 10.64.0.1 +PostUp = iptables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -I OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT +PreDown = iptables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL ! -d 192.168.0.0/16 -j REJECT && ip6tables -D OUTPUT ! -o %i -m mark ! --mark $(wg show %i fwmark) -m addrtype ! --dst-type LOCAL -j REJECT + +[Peer] +PublicKey = 2AvJGG4MJfnJMRSR6kcha9FZMMkhJM/AtktI5DSESSI= +AllowedIPs = 0.0.0.0/0,::0/0 +Endpoint = 185.213.193.127:51820 \ No newline at end of file diff --git a/secrets.yaml b/secrets.yaml index 6e3c7cb..9f61edd 100755 --- a/secrets.yaml +++ b/secrets.yaml @@ -15,7 +15,7 @@ authelia-jwt-secret: ENC[AES256_GCM,data:uKWCq7x0mSZJKXDDhMNNPFCglLchlbzCDd68Gao authelia-session-secret: ENC[AES256_GCM,data:4RXVjaR4O3Zy0MbS/yHV/YKTlJyrL0PmBhYQxYiadI3R/aoZaT7VwPyMVRgia031au6UojZFooETdWdzEVKRwA==,iv:rdUk5UsWI56myFu3necp+iIzMNMkzRZQcOGmjG3UD4I=,tag:pqFFuLb5TdPic/n+Ccf/cQ==,type:str] authelia-storage-encryption-key: ENC[AES256_GCM,data:z/k/wXyLp53lZ50oaca/QIs55kF9iKT5ck/s6clFnhyLPkjFeTnVz9Met6klCrs/IkfPHOu50bS2o894D0Xa+A==,iv:Kd8xv6Rk1tTKYmp5/wFlj4HRqjVJQT5QzlpUQO9AF8o=,tag:nNzUumbV9Fgt+DveAmXY2w==,type:str] authelia-authentication-backend-ldap-password: ENC[AES256_GCM,data:VWHW3rjjYCiEw2TuDCAXBhkTMVFsjjQmHByB6H8SwNuF5rAxsZTN99jF9+BE66S3GBtgMJ7loJ/RHkZ4ukC1lQ==,iv:8Iz/ydhN6cnVqlUt0zsp0N6OGuiDwgu858MsJsp7SNM=,tag:8O9lbI//3CR0D7ATGmfLsw==,type:str] -mullvad-account-number: ENC[AES256_GCM,data:4YwyUGIjpkszBJ/rApsqfw==,iv:fz40K9elmeO19ZdhTT+VjI/DXa8emmSYd1Wqx+JBfU0=,tag:GJmbTVb1VB2cKarg+V1qbA==,type:str] +wireguard-mullvad-key: ENC[AES256_GCM,data:UHvISlmMz9pqpegyOr9SEHQcgklLp9f4myCGWYR0BoeGHj/dYkLT333FTsE=,iv:4JJo2NUpb9TcAnoSFPVtpk58eDBOwziJ72xJ2ibg9zU=,tag:61a5tcZgMVu3BeJMDOB4Fw==,type:str] deertopia-cache-key: ENC[AES256_GCM,data:icKy8QZ59/zvQXgsTqN0PInUH3kgZBquwoAF0Lz3yy1avRI6z5DPuBAmj15lC8UmoDhTqi8nCvm5CGW1Xp5YgAQ5TgEWRpm8FWXxSofhLw8BotM4S3zxtCyefxcrW8Z7Lh7p25ECLrSX5F1h,iv:NNOWrgLrtg4WgG6IYWrVOhaTBmAaSeephvVwTT3VeUQ=,tag:zHmAil/falzhWXkvAV4PQA==,type:str] sops: kms: [] @@ -41,8 +41,8 @@ sops: TXFLY2l0UHJ3Z0NGZjVpbTQ2UC8yaTQKA7wTmW9Ha6T2KmCr/nkXdizgv8+V6SAp ZhDO+uDQ1evIh2wLWMOXNJ3d/zplLCOTzR2xkqBIUp5V7MXj45RUIA== -----END AGE ENCRYPTED FILE----- - lastmodified: "2025-03-12T18:28:36Z" - mac: ENC[AES256_GCM,data:jQCvZ/quZSDdkjzUKLbdbHSWuTvSs8TvMHxW2+nUt/ZUcwvel+Qhv0Yn4Ao1iDcwaO+MqPquXWQpBlRy3K3ADgThhKBkL2ZcCSaZ6bJA8KkCvk5BxE4+Il77cTr/gAYk/anWVLK8qLoMhjvSHVWUydGzsIL0w0kDHlEfIM4WC14=,iv:Z0tvSatR6d54LOtz1dlJuwYMrmE3uPh9L08OpUkF8zc=,tag:b/MrbFhhgPGtCEMvW7JGYQ==,type:str] + lastmodified: "2025-03-25T05:39:46Z" + mac: ENC[AES256_GCM,data:5SzQHXh3iIhpFoU88P6a4ZDivRLKck5WlMIY8Zws+Xv7FQ3vB9YR5NlxSa/EUp4LRm8qyB3ZeI6kQueOLmJMKftWSOqKcmSy2Danjo3Ks1tkTGFCFjiFz68M+7yeiqRDt/g7HCdDp/K5z0bk3s5XrgeRyRJ2xSKGt1WPMIIMhVg=,iv:hnMUHb64Kh4fR417bgnLRJTDuJcMYtbD6Ahx7RBkj2s=,tag:08qVbdii3mH2sty3nSk8zQ==,type:str] pgp: [] unencrypted_suffix: _unencrypted version: 3.9.4