From 6ecb02fb454acb76a1a506a913c91bd40b726d4e Mon Sep 17 00:00:00 2001
From: "Casper V. Kristensen" <casper@vkristensen.dk>
Date: Sat, 7 Sep 2024 18:49:55 +0200
Subject: [PATCH] wireguard: explicit ipv4

---
 hosts/sigma/network.nix | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/hosts/sigma/network.nix b/hosts/sigma/network.nix
index e2dbeb8..bd5b9f0 100644
--- a/hosts/sigma/network.nix
+++ b/hosts/sigma/network.nix
@@ -74,7 +74,9 @@
           wireguardPeerConfig = {
             PublicKey = "AlphazUR/z+1DRCFSvxTeKPIJnyPQvYsDoSgESvqJhM=";
             PresharedKeyFile = config.age.secrets.wireguard-preshared-key-file.path;
-            Endpoint = "alpha.caspervk.net:51820";
+            # Explicit IPv4 address of alpha.caspervk.net to avoid attempting
+            # to (re)connect through IPv6(??).
+            Endpoint = "116.203.179.206:51820";
             # Keep NAT mappings and stateful firewalls open at the ISP
             PersistentKeepalive = 25;
             # AllowedIPs is both an ACL for incoming traffic, as well as a
@@ -145,7 +147,9 @@
           wireguardPeerConfig = {
             PublicKey = "AlphazUR/z+1DRCFSvxTeKPIJnyPQvYsDoSgESvqJhM=";
             PresharedKeyFile = config.age.secrets.wireguard-preshared-key-file.path;
-            Endpoint = "alpha.caspervk.net:51821";
+            # Explicit IPv4 address of alpha.caspervk.net to avoid attempting
+            # to (re)connect through IPv6(??).
+            Endpoint = "116.203.179.206:51821";
             PersistentKeepalive = 25;
             AllowedIPs = ["0.0.0.0/0"];
             RouteTable = "wg-sigma-p2p";