From 97555504359d827b4cbc2e2ed2af3d922aef21cb Mon Sep 17 00:00:00 2001
From: clerie <git@clerie.de>
Date: Wed, 11 Jun 2025 08:06:42 +0200
Subject: [PATCH 1/3] hosts/dn42-il-gw1: AS4242421718 fix link local peer
 address

---
 hosts/dn42-il-gw1/configuration.nix | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/hosts/dn42-il-gw1/configuration.nix b/hosts/dn42-il-gw1/configuration.nix
index 970165b..28ae99d 100644
--- a/hosts/dn42-il-gw1/configuration.nix
+++ b/hosts/dn42-il-gw1/configuration.nix
@@ -146,6 +146,9 @@
         "fe80::2574/128"
         # peer fe80::6b61/64
       ];
+      postSetup = ''
+      ip addr replace dev wg1718 fe80::2574/128 peer fe80::6b61/128
+      '';
       listenPort = 51718;
       allowedIPsAsRoutes = false;
       peers = [

From e24190ae082c252378f3368be9091a2b7a2fe40e Mon Sep 17 00:00:00 2001
From: clerie <git@clerie.de>
Date: Wed, 11 Jun 2025 08:07:13 +0200
Subject: [PATCH 2/3] hosts/dn42-il-gw1: Open firewall for wireguard tunnel
 ports

---
 hosts/dn42-il-gw1/configuration.nix | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/hosts/dn42-il-gw1/configuration.nix b/hosts/dn42-il-gw1/configuration.nix
index 28ae99d..0cd44a6 100644
--- a/hosts/dn42-il-gw1/configuration.nix
+++ b/hosts/dn42-il-gw1/configuration.nix
@@ -162,6 +162,15 @@
     };
   };
 
+  networking.firewall.allowedUDPPorts = [
+    50565 # wg0565
+    51271 # wg1271
+    51272 # wg1272
+    51280 # wg1280
+    54719 # wg4719
+    51718 # wg1718
+  ];
+
   profiles.clerie.dn42-router = {
     enable = true;
     loopbackIp = "fd56:4902:eca0:1::1";

From bd2dd2854128ee61c972a53ed92436c580cb2b5a Mon Sep 17 00:00:00 2001
From: Flake Update Bot <flake-update-bot@clerie.de>
Date: Thu, 12 Jun 2025 03:03:06 +0200
Subject: [PATCH 3/3] Update nixpkgs 2025-06-12-01-03

---
 flake.lock | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/flake.lock b/flake.lock
index a198352..0aa1289 100644
--- a/flake.lock
+++ b/flake.lock
@@ -566,11 +566,11 @@
     },
     "nixpkgs_4": {
       "locked": {
-        "lastModified": 1748190013,
-        "narHash": "sha256-R5HJFflOfsP5FBtk+zE8FpL8uqE7n62jqOsADvVshhE=",
+        "lastModified": 1749285348,
+        "narHash": "sha256-frdhQvPbmDYaScPFiCnfdh3B/Vh81Uuoo0w5TkWmmjU=",
         "owner": "NixOS",
         "repo": "nixpkgs",
-        "rev": "62b852f6c6742134ade1abdd2a21685fd617a291",
+        "rev": "3e3afe5174c561dee0df6f2c2b2236990146329f",
         "type": "github"
       },
       "original": {