rouven.seifert/nixos-config
1
1
Fork 0
mirror of https://git.sr.ht/~rouven/nixos-config synced 2025-04-25 16:08:30 +02:00
Code Issues Projects Releases Packages Wiki Activity

added tu vpn

Browse source
This commit is contained in:
Rouven Seifert 2022-12-29 20:25:07 +01:00
parent 1a57beaf6c
commit dcf91b8d59
Signed by: rouven.seifert
GPG key ID: B95E8FE6B11C4D09
3 changed files with 46 additions and 25 deletions
Download patch file Download diff file Expand all files Collapse all files

62
hosts/thinkpad/modules/networks/uni.nix
View file

@ -1,29 +1,45 @@
{ config, ... }:
{
networking.wireless.networks = {
eduroam ={
auth = ''
eap=PEAP
anonymous_identity="anonymous@tu-dresden.de"
ca_cert="/etc/ssl/certs/ca-certificates.crt"
domain_suffix_match="radius-eduroam.zih.tu-dresden.de"
identity="rose159e@tu-dresden.de"
password="@EDUROAM_AUTH@"
phase2="auth=mschapv2"
'';
authProtocols = [ "WPA-EAP" ];
sops.secrets."uni/zih" = {};
networking = {
wireless.networks = {
eduroam ={
auth = ''
eap=PEAP
anonymous_identity="anonymous@tu-dresden.de"
ca_cert="/etc/ssl/certs/ca-certificates.crt"
domain_suffix_match="radius-eduroam.zih.tu-dresden.de"
identity="rose159e@tu-dresden.de"
password="@EDUROAM_AUTH@"
phase2="auth=mschapv2"
'';
authProtocols = [ "WPA-EAP" ];
};
agdsn ={
auth = ''
eap=TTLS
anonymous_identity="anonymous@agdsn.de"
ca_cert="/etc/ssl/certs/ca-certificates.crt"
domain_suffix_match="radius.agdsn.de"
identity="r5"
password="@AGDSN_AUTH@"
phase2="auth=PAP"
'';
authProtocols = [ "WPA-EAP" ];
};
};
agdsn ={
auth = ''
eap=TTLS
anonymous_identity="anonymous@agdsn.de"
ca_cert="/etc/ssl/certs/ca-certificates.crt"
domain_suffix_match="radius.agdsn.de"
identity="r5"
password="@AGDSN_AUTH@"
phase2="auth=PAP"
'';
authProtocols = [ "WPA-EAP" ];
openconnect.interfaces = {
TU-Dresden = {
protocol = "anyconnect";
gateway = "vpn2.zih.tu-dresden.de";
user = "rose159e@tu-dresden.de";
passwordFile = config.sops.secrets."uni/zih".path;
autoStart = false;
extraOptions = {
authgroup = "A-Tunnel-TU-Networks";
compression = "stateless";
};
};
};
};
}