Tim Schupp5d ago
Finally there 100% using #nixos for all my private devices ( except #grapheneos on my phone ); have a #docker image for my system and even an .iso generator for future systems. Never felt my system to be more stable!
Next up is to migrate all my servers also to #nixos
Would also love to extend this with a #wireguard managed nix config based mesh network set-up.
Also #gaming on nix via #steam with no issues.
Have a #gnome setup for touch screens and #i3 for my keyboard driven daily drivers.
Show threadjabster284d ago
nice!
re: wireguard, have you used tailscale? tailscale just wraps wireguard with some extra features like good native apps, holepunching, and relaying if you can't access a node directly.
you can also selfhost their control plane, though it's all encrypted anyways

only issue is it's not very declarative, you'd need to log in manually on each machine after first install unless you pre-generate the keys. id imagine plain wireguard would be similar tho

what would you want wireguard for?
Show threadTim Schupp
@jabster28 also actuall chrckout #netbird too that is 100% open source and has all cool features also #wireguard base; but also central control.
Mar 18 at 10:43amWeb
Show threadtioan3d ago
@timschupp @jabster28 And legacy IP only 😢
Show threadTim Schupp2d ago

@tioan @jabster28
Haven't really tested #netbird yet but this sounds like at least IPv6 traffic should work: https://github.com/netbirdio/netbird/issues/577

Even if IPv6 subnets aren't supported yet:
https://github.com/netbirdio/netbird/issues/46

Tho somebody in that thread did say "unable to route IPv6 route through IPv4 addressable Peer" wich sounds bad if true.

Please correct me if thats wrong; if you know what actually works.
Am also curious cause thus far #netbird did seem like the best open source option available.

Support sending wireguard traffic over IPv6 · Issue #577 · netbirdio/netbird

Currently only IPv4 addresses are used in the peer discovery process and as wireguard endpoints. IPv6 support would enable clients that can't establish connection via NAT traversal but have IPv6 ad...

GitHub