From 2fa78656a47392fccc43c1ec7305e327187e9da0 Mon Sep 17 00:00:00 2001
From: Jasper Ras <jras@hostnet.nl>
Date: Tue, 25 Mar 2025 11:02:40 +0100
Subject: mucking around with wireguard, put on hold

---
 modules/core/wireguard.nix     |   4 ++++
 modules/snorlax/syncoid.nix    |  14 ++++++++++++++
 public/syncoid-key.pub         |   1 +
 public/wg-snorlax-public       |   1 +
 secrets/secrets.nix            | Bin 1237 -> 1289 bytes
 secrets/wg-snorlax-private.age | Bin 0 -> 279 bytes
 syncoid-key.pub                |   1 -
 7 files changed, 20 insertions(+), 1 deletion(-)
 create mode 100644 modules/core/wireguard.nix
 create mode 100644 public/syncoid-key.pub
 create mode 100644 public/wg-snorlax-public
 create mode 100644 secrets/wg-snorlax-private.age
 delete mode 100644 syncoid-key.pub

diff --git a/modules/core/wireguard.nix b/modules/core/wireguard.nix
new file mode 100644
index 0000000..c8f4957
--- /dev/null
+++ b/modules/core/wireguard.nix
@@ -0,0 +1,4 @@
+{ config, ... }:
+{
+  age.secrets.wg-snorlax-private.file = ../../secrets/wg-snorlax-private.age;
+}
diff --git a/modules/snorlax/syncoid.nix b/modules/snorlax/syncoid.nix
index 3d4654a..5328652 100644
--- a/modules/snorlax/syncoid.nix
+++ b/modules/snorlax/syncoid.nix
@@ -6,8 +6,22 @@
     group = "syncoid";
   };
 
+
+  services.sanoid.enable = true;
+  services.sanoid.datasets = {
+    "data/safe/persist" = {
+      autoprune = true;
+      autosnap = true;
+      hourly = 24;
+      daily = 7;
+      monthly = 1;
+      yearly = 1;
+    };
+  };
+
   services.syncoid.enable = true;
   services.syncoid.sshKey = config.age.secrets.syncoid-key.path;
+  services.syncoid.commonArgs = ["--no-sync-snap"];
   services.syncoid.commands = {
     "data/safe/persist".target = "ubuntu@185.107.88.38:backup/snorlax";
   };
diff --git a/public/syncoid-key.pub b/public/syncoid-key.pub
new file mode 100644
index 0000000..bc2f101
--- /dev/null
+++ b/public/syncoid-key.pub
@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGnWMAq+6bzP3TVo5mHkg+ABQOyM32hN1Jg6AiXemHG9 jras@work
diff --git a/public/wg-snorlax-public b/public/wg-snorlax-public
new file mode 100644
index 0000000..e171753
--- /dev/null
+++ b/public/wg-snorlax-public
@@ -0,0 +1 @@
+lKGuofit655cRhETjO3s2k+UrjSzQqlNGUTg/6tFGk8=
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index b0a4d7c..d7f13c4 100644
Binary files a/secrets/secrets.nix and b/secrets/secrets.nix differ
diff --git a/secrets/wg-snorlax-private.age b/secrets/wg-snorlax-private.age
new file mode 100644
index 0000000..a1a2476
Binary files /dev/null and b/secrets/wg-snorlax-private.age differ
diff --git a/syncoid-key.pub b/syncoid-key.pub
deleted file mode 100644
index bc2f101..0000000
--- a/syncoid-key.pub
+++ /dev/null
@@ -1 +0,0 @@
-ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIGnWMAq+6bzP3TVo5mHkg+ABQOyM32hN1Jg6AiXemHG9 jras@work
-- 
cgit v1.2.3