Rosenpass
Rosenpass is a formally verified, post-quantum secure VPN that uses WireGuard to transport the actual data.
Declared in: projects/Rosenpass/default.nix
Demo
Implement missing demoOptions
programs.rosenpass
-
Whether to enable rosenpass.
- Type:
boolean- Default:
false- Declared in:
- projects/Rosenpass/programs/basic/module.nix
programs.rosenpass.enable
services.rosenpass
-
Name of the network interface to use for all peers by default.
- Type:
null or string- Declared in:
- nixos/modules/services/networking/rosenpass.nix
-
Whether to enable Rosenpass.
- Type:
boolean- Default:
false- Declared in:
- nixos/modules/services/networking/rosenpass.nix
-
The rosenpass package to use.
- Type:
package- Default:
pkgs.rosenpass- Declared in:
- nixos/modules/services/networking/rosenpass.nix
-
Configuration for Rosenpass, see https://rosenpass.eu/ for further information.
- Type:
open submodule of (TOML value)- Default:
{ }- Declared in:
- nixos/modules/services/networking/rosenpass.nix
-
List of local endpoints to listen for connections.
- Type:
list of string- Default:
[ ]- Declared in:
- nixos/modules/services/networking/rosenpass.nix
-
List of peers to exchange keys with.
- Type:
list of (open submodule of (TOML value))- Default:
[ ]- Declared in:
- nixos/modules/services/networking/rosenpass.nix
-
Name of the local WireGuard interface to use for this peer.
- Type:
string- Default:
config.services.rosenpass.defaultDevice- Declared in:
- nixos/modules/services/networking/rosenpass.nix
-
Endpoint of the remote Rosenpass peer.
- Type:
null or string- Default:
null- Declared in:
- nixos/modules/services/networking/rosenpass.nix
-
WireGuard public key corresponding to the remote Rosenpass peer.
- Type:
string- Declared in:
- nixos/modules/services/networking/rosenpass.nix
-
Path to a file containing the public key of the remote Rosenpass peer.
- Type:
absolute path- Declared in:
- nixos/modules/services/networking/rosenpass.nix
-
Path to a file containing the public key of the local Rosenpass peer. Generate this by running {command}
rosenpass gen-keys.- Type:
absolute path- Declared in:
- nixos/modules/services/networking/rosenpass.nix
-
Path to a file containing the secret key of the local Rosenpass peer. Generate this by running {command}
rosenpass gen-keys.- Type:
absolute path- Declared in:
- nixos/modules/services/networking/rosenpass.nix
-
Verbosity of output produced by the service.
- Type:
one of "Verbose", "Quiet"- Default:
"Quiet"- Declared in:
- nixos/modules/services/networking/rosenpass.nix
services.rosenpass.defaultDevice
services.rosenpass.enable
services.rosenpass.package
services.rosenpass.settings
services.rosenpass.settings.listen
services.rosenpass.settings.peers
services.rosenpass.settings.peers.*.device
services.rosenpass.settings.peers.*.endpoint
services.rosenpass.settings.peers.*.peer
services.rosenpass.settings.peers.*.public_key
services.rosenpass.settings.public_key
services.rosenpass.settings.secret_key
services.rosenpass.settings.verbosity
Examples
basic
{ ... }: { services.rosenpass.enable = true; }
Declared in: projects/Rosenpass/services/basic/examples/basic.nix
Metadata
This project is funded by NLnet through these subgrants:
- Core
- Rosenpass-integration
- Review
- Rosenpass
- Rosenpass-API
Related links: