2024-10-22

author: azahi <azat@bahawi.net> 2024-10-22 01:50:45 +0300
committer: azahi <azat@bahawi.net> 2024-10-22 01:50:45 +0300
commit: 800b426b71e64556be79c1915540f24dab72209e (patch)
tree: dd91d07a0428238db47da6eb9799d8731c733200 /modules/wireguard.nix
parent: 2024-10-21 (diff)
1 files changed, 23 insertions, 4 deletions
diff --git a/modules/wireguard.nix b/modules/wireguard.nix
index fe01a86..f32e5ba 100644
--- a/modules/wireguard.nix
+++ b/modules/wireguard.nix
@@ -148,9 +148,15 @@ in
               "${ipv6.address}/16"
             ];
             extraInterfaceConfig = mkIf this.isHeadful ''
-              Jc = 4
-              Jmin = 40
-              Jmax = 70
+              jc = 228
+              jmin = 42
+              jmax = 420
+              s1 = 69
+              s2 = 96
+              h1 = 1134610890
+              h2 = 2137373420
+              h3 = 625719520
+              h4 = 2106927320
             '';
           })
           (with cfg.server; {
@@ -218,7 +224,20 @@ in
               ];
               listenPort = port;
               inherit peers;
-              postSetup = DNSSetup;
+              postSetup =
+                DNSSetup
+                + ''
+                  awg set ${cfg.interface} \
+                    jc 228 \
+                    jmin 42 \
+                    jmax 420 \
+                    s1 69 \
+                    s2 96 \
+                    h1 1134610890 \
+                    h2 2137373420 \
+                    h3 625719520 \
+                    h4 2106927320
+                '';
               allowedIPsAsRoutes = false;
             };
           };
author	azahi <azat@bahawi.net>	2024-10-22 01:50:45 +0300
committer	azahi <azat@bahawi.net>	2024-10-22 01:50:45 +0300
commit	800b426b71e64556be79c1915540f24dab72209e (patch)
tree	dd91d07a0428238db47da6eb9799d8731c733200 /modules/wireguard.nix
parent	2024-10-21 (diff)