Openvpn instead

2025-12-14 20:40:52 +01:00 · 2025-12-14 20:40:52 +01:00 · 374e44e5ad
commit 374e44e5ad
parent bf16d0a22b
3 changed files with 16 additions and 9 deletions
--- a/modules/servermodules/arr/arr.nix
+++ b/modules/servermodules/arr/arr.nix
@ -1,4 +1,4 @@
-{ pkgs, ... }:
+{ pkgs, config, ... }:
 let
  mediaGroup = "media";
 in
@ -15,12 +15,18 @@ in
    ];
  };

-  age.secrets.wg-scribe = {
-    file = ../../../keys/wg-scribe;
-    path = "/etc/wireguard/wg-scribe.conf";
+  age.secrets.vpn = {
+    file = ../../../keys/scribe;
+    owner = "ren";
  };

-  networking.firewall.trustedInterfaces = [ "wg-selene" "wg-scribe" ];
+  services.openvpn.servers = {
+    officeVPN = {
+      config = ''config ${config.age.secrets.vpn.path} '';
+    };
+  };
+
+  networking.firewall.trustedInterfaces = [ "wg-selene" ];
  networking.firewall.allowedUDPPorts = [ 23379 ];
  networking.firewall.allowedTCPPorts = [ 23379 ];

@ -28,10 +34,10 @@ in
  services.prowlarr.enable = true;

  services.deluge = {
-   enable = true;
-   web.enable = true;
-   user = "torrenter";
-   group = mediaGroup;
+    enable = true;
+    web.enable = true;
+    user = "torrenter";
+    group = mediaGroup;

  };