From 82f22ef44452e7941926daa8db688e2c2900ceac Mon Sep 17 00:00:00 2001
From: clerie <git@clerie.de>
Date: Tue, 22 Mar 2022 14:15:46 +0100
Subject: [PATCH] Add lutoma peering

---
 hosts/dn42-il-gw1/configuration.nix | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)

diff --git a/hosts/dn42-il-gw1/configuration.nix b/hosts/dn42-il-gw1/configuration.nix
index e9f0a08..20b2795 100644
--- a/hosts/dn42-il-gw1/configuration.nix
+++ b/hosts/dn42-il-gw1/configuration.nix
@@ -151,6 +151,26 @@
       ];
       privateKeyFile = "/var/src/secrets/wireguard/wg1302";
     };
+    # lutoma
+    wg4719 = {
+      ips = [
+        #"fe80::1/128"
+        # peer fe80::acab/128
+      ];
+      postSetup = ''
+      ip addr add dev wg4719 fe80::1/128 peer fe80::acab/128
+      '';
+      listenPort = 54719;
+      allowedIPsAsRoutes = false;
+      peers = [
+        {
+          allowedIPs = [ "fe80::/10" "fd00::/8" ];
+          endpoint = "[2603:c020:8001:ed42::42]:42546";
+          publicKey = "MkVyCgIq0BOStFIu2/Wl91ofFuRvnG3ZqTWFfVs/VlQ=";
+        }
+      ];
+      privateKeyFile = "/var/src/secrets/wireguard/wg4719";
+    };
   };
 
   petabyte.policyrouting = {
@@ -301,6 +321,10 @@
   	source address fe80::a14e;
   }
 
+  protocol bgp peer_4719 from bgp_peer {
+    neighbor fe80::acab%wg4719 as 64719;
+  }
+
   protocol device {
           scan time 10;
   }