From 4a3c5100931c92abb90eb54ddfa65b93a975eeba Mon Sep 17 00:00:00 2001
From: Patrick Spek <p.spek@tyil.nl>
Date: Tue, 5 Mar 2024 11:52:02 +0000
Subject: Add host toki

---
 data.d/vpn-tinc/hosts/toki_tyil_net      | 17 +++++++++++++++++
 data.d/vpn-wireguard/peers/toki.tyil.net |  4 ++++
 hosts.d/toki.tyil.net                    | 10 ++++++++++
 registry.d/toki.tyil.net                 |  4 ++++
 4 files changed, 35 insertions(+)
 create mode 100644 data.d/vpn-tinc/hosts/toki_tyil_net
 create mode 100644 data.d/vpn-wireguard/peers/toki.tyil.net
 create mode 100644 hosts.d/toki.tyil.net
 create mode 100644 registry.d/toki.tyil.net

diff --git a/data.d/vpn-tinc/hosts/toki_tyil_net b/data.d/vpn-tinc/hosts/toki_tyil_net
new file mode 100644
index 0000000..cecbf25
--- /dev/null
+++ b/data.d/vpn-tinc/hosts/toki_tyil_net
@@ -0,0 +1,17 @@
+Subnet = 10.57.20.8/32
+Subnet = fd68:1057:1992:3381:0:1:1:4/128
+
+
+-----BEGIN RSA PUBLIC KEY-----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==
+-----END RSA PUBLIC KEY-----
diff --git a/data.d/vpn-wireguard/peers/toki.tyil.net b/data.d/vpn-wireguard/peers/toki.tyil.net
new file mode 100644
index 0000000..b01e36b
--- /dev/null
+++ b/data.d/vpn-wireguard/peers/toki.tyil.net
@@ -0,0 +1,4 @@
+[Peer]
+AllowedIPs = fd68:1058:1992:3381:0:1:1:4/128
+Endpoint = [2a01:4f8:c013:2945::1]:51820
+PublicKey = CG/37oTnOQaRLpN8Z60rhZCmDaR12c9BMZCdIIHXPnk=
diff --git a/hosts.d/toki.tyil.net b/hosts.d/toki.tyil.net
new file mode 100644
index 0000000..78d3bad
--- /dev/null
+++ b/hosts.d/toki.tyil.net
@@ -0,0 +1,10 @@
+meta.provider=hetzner
+nftables.input.interfaces.cilium*.policy=accept
+nftables.input.interfaces.lxc*.policy=accept
+nftables.input.rules.kubelet.policy=accept
+nftables.input.rules.kubelet.port=10250
+nftables.input.rules.kubelet.proto=tcp
+vpn-tinc.ipv4=10.57.20.8
+vpn-tinc.ipv6=fd68:1057:1992:3381:0:1:1:4
+vpn-wireguard.endpoint=2a01:4f8:c013:2945::1
+vpn-wireguard.ip=fd68:1058:1992:3381:0:1:1:4
diff --git a/registry.d/toki.tyil.net b/registry.d/toki.tyil.net
new file mode 100644
index 0000000..6f38e85
--- /dev/null
+++ b/registry.d/toki.tyil.net
@@ -0,0 +1,4 @@
+nftables
+ssh
+vpn-tinc
+vpn-wireguard
-- 
cgit v1.1