{ config, ... }:
{
  # Enable networking
  networking.networkmanager.enable = true;
  networking.networkmanager.wifi.powersave = true;

  networking.wireguard.enable = true;

  networking.firewall = {
    allowedUDPPorts = [ 51820 ]; # Clients and peers can use the same port, see listenport
  };

  networking.wireguard.interfaces."wg0" = {
     privateKeyFile = "/run/agenix/fbda-wg-privkey";
     ips = [ "192.168.178.201/24" ];
     listenPort = 51820;

     peers = [                                                                                                                                                                                                                        
        { 
          publicKey = "wwx1Kns34xmK+UJsF4l89uIZ5oc/m8VA9q7+YPWCbX8=";
          presharedKeyFile = "/run/agenix/fbda-wg-psk";
          allowedIPs = [ "192.168.178.0/24" "0.0.0.0/0" ];
          endpoint = "y92dby3elaoma4gg.myfritz.net:57667";
          persistentKeepalive = 25;
        }
     ];
   };
}