Cloonar/nixos
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

try vpnc script

Browse source
This commit is contained in:
Dominik Polakovics Polakovics 2023-12-07 11:28:48 +01:00
parent 458f6ff0a4
commit 35b1126a97
1 changed files with 20 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

21
hosts/fw.cloonar.com/modules/openconnect.nix
View file

@ -1,4 +1,20 @@
{ config, ... }: { { config, pkgs, ... }:
let
vpnc = { name, sha256 }:
stdenv.mkDerivation {
inherit name;
outputHashMode = "recursive";
outputHashAlgo = "sha256";
outputHash = sha256;
builder = writeShellScript "vpnc-script.sh" ''
#!/bin/sh
export INTERNAL_IP4_DNS=
. ${pkgs.vpnc-scripts}/vpnc-script
'';
};
in
{
sops.secrets.wrwks_vpn_key = {}; sops.secrets.wrwks_vpn_key = {};
networking.openconnect.interfaces = { networking.openconnect.interfaces = {
@ -7,6 +23,9 @@
passwordFile = config.sops.secrets.wrwks_vpn_key.path; passwordFile = config.sops.secrets.wrwks_vpn_key.path;
protocol = "anyconnect"; protocol = "anyconnect";
user = "exdpolakovics@wrwks.local"; user = "exdpolakovics@wrwks.local";
extraOptions = {
script = "${vpnc}/bin/vpnc-script.sh";
}
}; };
}; };
} }