66 lines
1.4 KiB
Nix
66 lines
1.4 KiB
Nix
{ config, lib, ... }:
|
|
let
|
|
always = 100;
|
|
home = 99;
|
|
public_wifi = false;
|
|
in
|
|
{
|
|
networking.wireless = {
|
|
enable = true;
|
|
secretsFile = config.sops.secrets."wifi-env".path;
|
|
userControlled.enable = true;
|
|
networks = {
|
|
"taetaethegae-2.0" = {
|
|
pskRaw = "ext:PASS_taetaethegae_20";
|
|
priority = home;
|
|
};
|
|
"k" = {
|
|
pskRaw = "ext:PASS_k";
|
|
priority = always;
|
|
};
|
|
"Bloomfield".pskRaw = "ext:PASS_bloomfield";
|
|
"9872441500".pskRaw = "ext:PASS_longboat_home";
|
|
"9872441561".pskRaw = "ext:PASS_longboat_home";
|
|
"5HuFios".pskRaw = "ext:PASS_longboat_home";
|
|
"24HuFios".pskRaw = "ext:PASS_longboat_home";
|
|
"Verizon_ZLHQ3H".pskRaw = "ext:PASS_angie";
|
|
"Fios-Qn3RB".pskRaw = "ext:PASS_parkridge";
|
|
#"optimumwifi" = { };
|
|
#"CableWiFi" = { };
|
|
"JPMCVisitor" = { };
|
|
#"Hilton Honors" = { };
|
|
};
|
|
};
|
|
|
|
sops = {
|
|
defaultSopsFile = ./secrets.yaml;
|
|
secrets = {
|
|
"wifi-env" = {
|
|
owner = "root";
|
|
restartUnits = [ "wpa_supplicant.service" ];
|
|
};
|
|
};
|
|
};
|
|
}
|
|
//
|
|
|
|
lib.mkIf (!public_wifi) {
|
|
|
|
networking.nameservers = [
|
|
"9.9.9.9"
|
|
"1.1.1.1"
|
|
"192.168.76.1"
|
|
];
|
|
|
|
services.resolved = {
|
|
enable = true;
|
|
dnssec = "false";
|
|
domains = [ "~." ];
|
|
fallbackDns = [
|
|
"1.1.1.1#one.one.one.one"
|
|
"1.0.0.1#one.one.one.one"
|
|
];
|
|
dnsovertls = "true";
|
|
};
|
|
}
|