From b5f1989145b02ecd5e3c0e716b55b605d01b613f Mon Sep 17 00:00:00 2001 From: Felix Schulze Date: Thu, 26 Jun 2025 20:18:03 +0200 Subject: [PATCH] hurricane: 89 current 2025-06-26 20:17:54 25.05.20250620.b2485d5 6.15.3 * hurricane: 90 current 2025-06-26 20:24:18 25.05.20250620.b2485d5 6.15.3 * hurricane: 91 current 2025-06-26 20:29:03 25.05.20250620.b2485d5 6.15.3 * vpn config dont put address or endpoint in allowed IPs! Revert "hurricane: 90 current 2025-06-26 20:24:18 25.05.20250620.b2485d5 6.15.3 *" This reverts commit b067ce371692e26e45d3d134dda8d56a3168c3bb. --- hosts/hurricane/vpn.nix | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/hosts/hurricane/vpn.nix b/hosts/hurricane/vpn.nix index 00fae42..79e3991 100644 --- a/hosts/hurricane/vpn.nix +++ b/hosts/hurricane/vpn.nix @@ -9,7 +9,7 @@ { publicKey = "a35ZSWhBNzPFkf1RCkg4E7cNnUdGGOr4CsA0EM65H0g="; presharedKeyFile = "/home/schulze/Nextcloud/secrets/wireguard/Felix-Hurricane-psk"; - allowedIPs = ["0.0.0.0/0"]; + allowedIPs = ["192.168.0.0/24"]; endpoint = "vpn.schulze.network:51820"; persistentKeepalive = 25; } @@ -22,7 +22,7 @@ peers = [ { publicKey = "mTORKHkPcp9+c7VXqVfVseIOQZuJftoUYA0pBe87bDQ="; - allowedIPs = ["172.18.0.0/16" "192.168.3.0/24" "192.168.108.0/22" "2a02:9a0:102:108::/64" "2a02:9a0:ffff::/48" "2a02:9a0:fffe::/48"]; + allowedIPs = ["172.18.0.0/16" "192.168.3.0/24" "2a02:9a0:ffff::/48" "2a02:9a0:fffe::/48"]; endpoint = "prod-net-vpn1.infra.brainmill.com:51819"; persistentKeepalive = 25; } @@ -48,7 +48,7 @@ peers = [ { publicKey = "nz1m0crkdarW7y+/p6hKCGncMVHlVhbz0URA6Z71RmM="; - allowedIPs = ["172.18.255.0/24" "2a09:2681:204:1::/64" "2a09:2681:ffff:13::/64" "2a09:2681:ffff:14::/64" "2a09:2681:ffff:15::/64" "2a09:2681:ffff:16::/64"]; + allowedIPs = ["172.18.255.0/24" "2a09:2681:ffff:13::/64" "2a09:2681:ffff:14::/64" "2a09:2681:ffff:15::/64" "2a09:2681:ffff:16::/64"]; endpoint = "prod-jump-got1.infra.brainmill.com:51820"; persistentKeepalive = 25; }