···

       
273
       
273
       
 
       
        after = [ "network.target" "network-online.target" ];

     

       
274
       
274
       
 
       
        wantedBy = optional values.autostart "multi-user.target";

     

       
275
       
275
       
 
       
        environment.DEVICE = name;

     

       
276
       
276
       
-
       
        path = [ pkgs.kmod pkgs.wireguard-tools config.networking.resolvconf.package ];

     

       
276
       
276
       
+
       
        path = [

     

       
277
       
277
       
+
       
          pkgs.wireguard-tools

     

       
278
       
278
       
+
       
          config.networking.firewall.package   # iptables or nftables

     

       
279
       
279
       
+
       
          config.networking.resolvconf.package # openresolv or systemd

     

       
280
       
280
       
+
       
        ];

     

       
277
       
281
       
 
       


     

       
278
       
282
       
 
       
        serviceConfig = {

     

       
279
       
283
       
 
       
          Type = "oneshot";

     
···

       
281
       
285
       
 
       
        };

     

       
282
       
286
       
 
       


     

       
283
       
287
       
 
       
        script = ''

     

       
284
       
284
       
-
       
          ${optionalString (!config.boot.isContainer) "modprobe wireguard"}

     

       
288
       
288
       
+
       
          ${optionalString (!config.boot.isContainer) "${pkgs.kmod}/bin/modprobe wireguard"}

     

       
285
       
289
       
 
       
          ${optionalString (values.configFile != null) ''

     

       
286
       
290
       
 
       
            cp ${values.configFile} ${configPath}

     

       
287
       
291
       
 
       
          ''}