nixos-config/hosts/thinkpad/modules/networks/uni.nix

{ config, ... }:
{
  sops.secrets."uni/zih" = { };
  networking = {
    wireless.networks = {
      eduroam = {
        auth = ''
          eap=PEAP
          anonymous_identity="anonymous@tu-dresden.de"
          ca_cert="/etc/ssl/certs/ca-certificates.crt"
          domain_suffix_match="radius-eduroam.zih.tu-dresden.de"
          identity="rose159e@tu-dresden.de"
          password="@EDUROAM_AUTH@"
          phase2="auth=MSCHAPV2"
        '';
        authProtocols = [ "WPA-EAP" ];
      };
      agdsn = {
        auth = ''
          eap=TTLS
          anonymous_identity="anonymous@agdsn.de"
          ca_cert="/etc/ssl/certs/ca-certificates.crt"
          domain_suffix_match="radius.agdsn.de"
          identity="r5"
          password="@AGDSN_AUTH@"
          phase2="auth=PAP"
        '';
        authProtocols = [ "WPA-EAP" ];
      };
      FSR = {
        psk = "@FSR_PSK@";
        authProtocols = [ "WPA-PSK" ];
      };
      "RoboLab Playground" = {
        psk = "@ROBOLAB_PSK@";
        authProtocols = [ "WPA-PSK" ];
      };
    };
    openconnect.interfaces = {
      TUD-A-Tunnel = {
        # apparently device names have a character limit
        protocol = "anyconnect";
        gateway = "vpn2.zih.tu-dresden.de";
        user = "rose159e@tu-dresden.de";
        passwordFile = config.sops.secrets."uni/zih".path;
        autoStart = false;
        extraOptions = {
          authgroup = "A-Tunnel-TU-Networks";
          compression = "stateless";
        };
      };
      TUD-C-Tunnel = {
        protocol = "anyconnect";
        gateway = "vpn2.zih.tu-dresden.de";
        user = "rose159e@tu-dresden.de";
        passwordFile = config.sops.secrets."uni/zih".path;
        autoStart = false;
        extraOptions = {
          authgroup = "C-Tunnel-All-Networks";
          compression = "stateless";
        };
      };
    };
  };
}
configured networks vpn isn't configured yet, for cable I don't know 2022-12-29 15:05:26 +01:00			`{ config, ... }:`
			`{`
formatting 2022-12-29 20:50:01 +01:00			`sops.secrets."uni/zih" = { };`
added tu vpn 2022-12-29 20:25:07 +01:00			`networking = {`
			`wireless.networks = {`
formatting 2022-12-29 20:50:01 +01:00			`eduroam = {`
added tu vpn 2022-12-29 20:25:07 +01:00			`auth = ''`
			`eap=PEAP`
			`anonymous_identity="anonymous@tu-dresden.de"`
			`ca_cert="/etc/ssl/certs/ca-certificates.crt"`
			`domain_suffix_match="radius-eduroam.zih.tu-dresden.de"`
			`identity="rose159e@tu-dresden.de"`
			`password="@EDUROAM_AUTH@"`
fixed eduroam connection 2023-01-04 11:32:12 +01:00			`phase2="auth=MSCHAPV2"`
added tu vpn 2022-12-29 20:25:07 +01:00			`'';`
			`authProtocols = [ "WPA-EAP" ];`
			`};`
formatting 2022-12-29 20:50:01 +01:00			`agdsn = {`
added tu vpn 2022-12-29 20:25:07 +01:00			`auth = ''`
			`eap=TTLS`
			`anonymous_identity="anonymous@agdsn.de"`
			`ca_cert="/etc/ssl/certs/ca-certificates.crt"`
			`domain_suffix_match="radius.agdsn.de"`
			`identity="r5"`
			`password="@AGDSN_AUTH@"`
			`phase2="auth=PAP"`
			`'';`
			`authProtocols = [ "WPA-EAP" ];`
			`};`
added fsr wifi 2022-12-30 22:44:05 +01:00			`FSR = {`
			`psk = "@FSR_PSK@";`
			`authProtocols = [ "WPA-PSK" ];`
			`};`
robolab setup 2023-03-09 19:15:05 +01:00			`"RoboLab Playground" = {`
			`psk = "@ROBOLAB_PSK@";`
			`authProtocols = [ "WPA-PSK" ];`
			`};`
configured networks vpn isn't configured yet, for cable I don't know 2022-12-29 15:05:26 +01:00			`};`
added tu vpn 2022-12-29 20:25:07 +01:00			`openconnect.interfaces = {`
formatting and updates 2023-01-10 11:31:33 +01:00			`TUD-A-Tunnel = {`
			`# apparently device names have a character limit`
added tu vpn 2022-12-29 20:25:07 +01:00			`protocol = "anyconnect";`
			`gateway = "vpn2.zih.tu-dresden.de";`
			`user = "rose159e@tu-dresden.de";`
			`passwordFile = config.sops.secrets."uni/zih".path;`
			`autoStart = false;`
			`extraOptions = {`
			`authgroup = "A-Tunnel-TU-Networks";`
			`compression = "stateless";`
			`};`
			`};`
formatting and updates 2023-01-10 11:31:33 +01:00			`TUD-C-Tunnel = {`
enhanced TUD vpn 2023-01-02 22:46:26 +01:00			`protocol = "anyconnect";`
			`gateway = "vpn2.zih.tu-dresden.de";`
			`user = "rose159e@tu-dresden.de";`
			`passwordFile = config.sops.secrets."uni/zih".path;`
			`autoStart = false;`
			`extraOptions = {`
			`authgroup = "C-Tunnel-All-Networks";`
			`compression = "stateless";`
			`};`
			`};`
configured networks vpn isn't configured yet, for cable I don't know 2022-12-29 15:05:26 +01:00			`};`
			`};`
			`}`