add wireguard & ca certificate

system/modules/default.nix

@@ -20,6 +20,9 @@
     ./time.nix
     ./theme.nix
     ./users.nix
+    ./wireguard.nix
+    ./dn-ca.nix
+    ./git.nix
     # ./virtualisation.nix
   ];
 }

system/modules/dn-ca.nix

@@ -0,0 +1,19 @@
+{ ... }:
+
+{
+	security.pki.certificates = [
+		''
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----
+		''
+	];
+}

system/modules/git.nix

@@ -0,0 +1,13 @@
+{ ... }:
+
+{
+	programs.git.config = {
+		init = {
+			defaultBranch = "main";
+		};
+		pull.rebase = true;
+		user.name = "DACHXY";
+		user.email = "Danny10132024@gmail.com";
+	};
+
+}

system/modules/wireguard.nix

@@ -0,0 +1,9 @@
+{config, pkgs, ...}:
+
+{
+	networking.firewall = {
+		allowedUDPPorts = [ 51820 ];
+	};
+
+	networking.wg-quick.interfaces.wg0.configFile = "/etc/wireguard/wg0.conf";
+}