From 244a8b01fb2b75126239f91247055be214838992 Mon Sep 17 00:00:00 2001
From: teutat3s <teutates@mailbox.org>
Date: Fri, 9 Jun 2023 17:07:15 +0200
Subject: [PATCH] mnx: add openvpn connection, update secrets

---
 secrets/environment-secrets.age  | Bin 875 -> 998 bytes
 secrets/mnx-bonanza-pf1.ovpn.age | Bin 0 -> 1538 bytes
 secrets/mnx-bonanza-pf1.p12.age  | Bin 0 -> 4522 bytes
 secrets/secrets.nix              |   2 ++
 users/teutat3s/mnx.nix           |  18 ++++++++++++++++++
 5 files changed, 20 insertions(+)
 create mode 100644 secrets/mnx-bonanza-pf1.ovpn.age
 create mode 100644 secrets/mnx-bonanza-pf1.p12.age

diff --git a/secrets/environment-secrets.age b/secrets/environment-secrets.age
index 13999bb33f8abd34003c70e381758c87b02f2675..971113bb95109a2a0ce27fb2414f9202906e076a 100644
GIT binary patch
delta 930
zcmV;T16};<2IdElEPpsNZ#Q8^bvHLOGdOZ)a#3-2M_4Z}NHsz@Vs>Fscw%Q#X-RQy
zN-|7oNeV$yY)&vXcTi73XjfEKa(6K@QEy>TOk_iFabih%QE6;Zc4|UMXLM>|X9_Jo
zAaiqQEoEdfH8n9gAUIVqD{f~XG*57EM|EgqSY|6YO;UGac11}wS#v8*b9PHldS!A+
zHdlE;MQ2EGG&F5V3S?z<W^Oq*cyV}CRW)}pYA;h*O)^q$O-fBKZdgQdS4nwsL1|TH
zZ89*C@EBK6LP=(Mb69j@PBU3pW^PGwIZ8uiP*6p1ba+Nbb5t)(YiMw8MNfBRZf^>7
zcTX{5Wp;T>cus3?F)MCmVk<a7Fj7f3F+@2qWkgDIZE`hQO*dpqb7zxZ0Tq90I80bM
zPf&1abX8SEGh=0VR8doUH8eyvW?@B3Yh_k*Idn#BZ&F4%SZoS7M^;r=Q8igaSyEAX
zHA`nuOG8&OI9WGpMNmw2bwY4RYiU(AFI7o1VQ&g8J|J5<WMNP>JS}H(Wnpt=3M*<-
zPkKgJGD=fOS#(!OOLlieRB3;1H#221bY}`JEiE8ua(G2!I5>1mSa(h|b9Gi$W>jlN
zFhyxcT17HpSvfduF>F>za5qqHO)v_<g4|uxeY1?FSr>rm1Oz+By(bMymAX%e2Z-;r
zYwC&(7Vcp-_w8yEhHVGrE5&GMu>d5}W?UV({AVqxZZpZ|zn;ALj_7}@X6acW>>zFE
z@_U&$>SbJzndY<kHWTe0!n1<C-c!f~&q@rVMk~D|^q72gvc%Rj?#Ctb3QR44{{DyC
z9$W_OyYRarB{v(HOlCx~4f&Q=D*)WkLq9|7zJPuw%Xev32h^8|o)WhXc&W;O88(W!
z#bn+-9r<X5;UV}ma<qR80IjSa-F{l{3zkid%ec>h`o^P-dd@g=-&hN6hmz`CZ1;N6
z!6jim;r*?5*4zrN?gH13d5rwRalnBuMC+s73%O2Wu%rnWPh?M*{(j<K+@qAb%1yhk
z-r7RggyDG$YtOGVC0jsSUGzXNIP-&(Lc=T%AS1U<!T0EPQ_^<H&9#zR<gUyhk<&ul
z)42+~Khp>2%9tLrV(V1+>+sU7N+SI3jjAZHM1SJrfqO0c66!D(A_kG>LA+)B7kRit
zAe-7J;ivK3X70S<NeQw0Kdxqi>IB!d776yYhSm8^l#`C*EwlNa0STD{_Qbq^nCNDB
EtLmeRK>z>%

delta 806
zcmWmA-HQ|j003}AG#&cDN(y>tu>+}bo0;96ua|?no!QyB-PxVloo~>bxt)*Qotc~O
zn>~s%lZ1P^iXx&cu){pj5PXX2L6E*46zV}Px(v#Wq!J?(BaME4!teS6H+HTbSnj)p
zt2C-?)@ii{u+9&tv=LRiGfqlsd`)+~p3!z(C&66@7`6tuY0g!|#fq4uQG!(iSZo9Z
zPbPI%HrWJ}ZCb>}bu9tP)1@SF%hsTRq6k?cBm@kc5*m_2Sn()SPotO=0)%E^De~z!
z7%3rWsMy3Y`vol79K`~5h(c;t&xeF0iFA%PF>6NV#xAmiH)#-I>ivQ3=>}BDuibo7
zi7H^G#HKAw%>H~Y%G9pl*tzGDR5sKnRtrXZ29~FOx2FMi-63)W%v?e@$AZln7=v4O
z&WNmnWLAeXW(;Wz%`rABz45}fy~_~8QKUK=iMArmEwU+sQk*V3G}sDdc$hmpOMn=L
zSH~~|Sbe$En6X8;ZuPZh8>ga>H(jaE*S&)G5!Q1uPKBxh%P;(&)L?6e!Ma;^V#`RZ
zl3fOdOFgej6IL`%G&knwMQ*v13we;aJQ#FTv8&ZaS%-6on25VAQ1%i_CFk=fW<|s|
z=UO>{b4;o%kST)+5)`_SR^*1G%WT&lbF3uz9*YWv+G^6Ir?%nDg)4HqQ?F^&NN3V8
zr~p11$3VGUE;(&;Rw$NxbbWRrfukrMVWY(gG#RF|JPk>TW+h&2feAq=7z2%|mA|L=
zoI8K;D7<y;?Q<^!Pdqa9{>qN6UvI8Gd;ha<KKXiBp^m+KZ^J!u=CSh^Hor;_9hpA#
z@iWlsZ@;|dAM@8w{w&Zhp8am?^!MLBzCY=mI9qzI*4h2k^sS|RKN|1hJ1;#gtgrof
z+}}KYJ$U`4=aCc0JKI0n*nj)Zs}F6Px=jCm^hR&%(^u}S-{<e1{@~=r$(f%LdLH@W
zR2Z$@+cEm*!rdj5g7nMR9z+k`zPO8|_FVnzb9vvcEAHm*!v0}pb@=9o9C7PZZG*o0
OW%FVD(d~cyd*DAWs4pe}

diff --git a/secrets/mnx-bonanza-pf1.ovpn.age b/secrets/mnx-bonanza-pf1.ovpn.age
new file mode 100644
index 0000000000000000000000000000000000000000..d556f9ab5edcc28d3ef6e9bf2d0b8020d926a3e0
GIT binary patch
literal 1538
zcmZ9|X;Tvi0DxhtsAH(MQUwo$AV(Dpn}lSuK}$(C2?;sKeW79!mShR!&MrX|X;BgF
zD2l*ni&kl?)T$sliWey2cmOR32r8l$1&>y#Ruq*UAN>RGGxHkE2nn&7Tt0^fwcFzC
zE;E2p2&6=!+if8s8B{u*!X#=OfEJJuon$*pPjSn6N{A+o#hngNnaN~hD8>12Ky5If
znGP9}%I3fp8NqAMWM=V=dV03RsI_xFMxog!_KD;Y4KL4N1^`nw*Q$e=A_LX@p$4fa
zu{JZ2YtE*4Ok4rr=H!}@c%H_GWo2+<6-rc0;WP5g8XL$b=OMU-ZzTxC03{{UVogyA
zAevFk6rnbr$fWZ~v~qPeKVE?$UXDbsfY21{hZ<Y$_9<CJjX9U2Kx_yk5uq3exO204
zEM5*|vywF~r3z+K*`8#E)WFY?SqU0k?-eQJcAkNe%Xeq1T|7vcZDYV7&8EZiG;UR@
zAtgK3u7<3%|1<}RksMSyNX$*n^X1`07EO|+<&h0+G}b5Z=s;Aa<@$2acpr<!P?=1)
zlrNUVbA>4=Xv7J2oS!AorqDnRk3*I?I5yY}XTTh`%xW;v#8!zyVF#sBJx&q*|1n8R
zGP@9i8zJh%1g6i0S*$`MipWJ?o{ek6JX9=I;zTXH44KMH1tCzzVd+@7NS&*tVmz|a
zWPsS1QxKnuuwlSSfMU6H!00f_S(qyswMlU}*Wj_4)Y2@jG7A@HQsq>EDVGbGWCRk4
zL`3y~UFdeQa3PF9T9sNx%}e%5aBdciD2y_0tW)UK>!@^zLari^I^Wn|t+@2E(C;=J
zpgkM7{a^_)A4?3boORZJSz=D~lFP!CNvbmxMzyfS@^|+MpM_e`Ge;fJ<X8ONcX`LJ
z$d+>6KASi*fsoebDIpU>^+mg$H||+BebJjpM#q`*^oWlH;RRpv@+;GxtU7UVbOc=A
zU$LL<%1CqWy3to8eqNjZ<#77r8Da{}+r0E79r^W>?Kj`G4^HUYb!yAZbW2Fo=;Et~
z9Y><0Hx@;)g~j_$kH^g|YYxllT~%9@BTiRjUDM-F+u+lSZ!P$$_2TuMqW6svi6!@;
z^GB!O9DiF?7})do_^4{nk`<Ke+krOb{C#V-IvW1!?Y&8ubTmId^iMeOO*{WdoxGLW
zlM!&Czl*I?hL5!_Xh<x$$0%$+;XL`Ye#Y2XIKDMAdRF~#?E<it8X8#fO;c~xy7Hi2
z&A0ds^CW4*lJIr=LhiqUOPak=mt&^2>JR#;ubWe+92k9?u9fbEONE0oPaVjZQ`-6Z
zU>$6DNgfP45=u{4_(E`g_v_aM8v^*3u=5YSzm422s~tP@kOX|2Im2ENEEt}D%P;+z
zgBVe>e%bU{bEbr-?CMD$`v?F0sC>_73);gvCU+iBYZ^NBWQO>YTkE<L{0|QG@7!40
z+EOL~2+W^)mN#E}zD62F77d*ygOO`)Jl5@aM15Er(}e}^p89FsLe5XGhPGK6p9NJX
zbhA5JbRBEy<@fg;!kFO~UMQyW(Tnygn<o%nR(>5bTe9Q*W{z~=ho*k<yURrll)JOX
zZ&qv}eSf9x&wf$lFYJin-!HOOm$#Hx_Yg|@!l%s#Nf+v?e>`1_oqVv+H^NN!jlXN(
zq|vV&=|?wJMJ3NXHyW~Q(0|~<!YT9?yeewM&uF^SmfsP0wK&$1PrnOpJT;gaXy1Ep
zXyW^hwApT_WpYwwjraJ|6P|)~Ckw}`!lw4g!b6w$H$#a@$D<z}_RI@Lf_Z-TmV<_C
z?PWLO&rRN&THI0}g4OJ&1+@lr*7&=I%R2WToBo10@0KbE5+CLyCtWwIG=1B)cMlY^
z&C6HEEjkm|RoGS6cY8-<TujmRQbBR@A<2NNE8_D9vj%=#5wzzIIYY0+1Nu!<s*ja6
z)xSv?Y;-k<dVt1oz;Oj|`+YIDAf?%?7zlgPF(DpZ%bfHDv~$~rd70;+P4C{mXshcU
fi&>pYn76mxm7$6B@525_zcc%<<jVCGoSJ_CKFW{&

literal 0
HcmV?d00001

diff --git a/secrets/mnx-bonanza-pf1.p12.age b/secrets/mnx-bonanza-pf1.p12.age
new file mode 100644
index 0000000000000000000000000000000000000000..03442d43d3357eac424588bd27deaae4a7863726
GIT binary patch
literal 4522
zcmV;b5moMCXJsvAZewzJaCB*JZZ2<fXD@a!3N1b$b8~1dWn?lnH8D9LS8y*_FHs;z
zc~nqQT31OmO-XukN=Ri%FlJ9MQ&2H&Z&xoycSbZdOGGkHV{dJ6Fi{F^W->HKD>rmy
zWNdIbXe%>HD@ZeBWO;E{G;3-raWXhqMo(H=YC|(<csL3zJ|J^*Xf0)AGBq_ZIUqPy
zF)MCoAYn%~IWlcAZZ=R^csXNCPIPQHYD-xwHd0kaGihUKWmi#RP)RvSQb9;r3PD6d
zD{)s-G*@9$XK8F#R!d<_cR@>VdP`DkZee#gHB2=*LPb(xGHy#a3N1b$b8~1dWn?ln
zH8D9LLRNEmR6!t6L1|EII9N1yLwHJgRas3?Y&ULZY;G|)H#bT}T6i;IW?C>vV{=4O
zd3OqWIdeyDOhGSEbx>zjSuis<Ib}mDZB$WiSZ`EuP(d+CR8V7jW?FDJO;rjlJ|J*u
zb}eu+H8vo4M|ydBcOXG?NMu%5Idn`|bxK5TR5Vg@S4dT5W@|=JFg002XJut&NMuKB
zOL}Q^FH8zVP(^J)Pe@W`GdWgzK{QWAFk^2@PD*)UW=1twSTbZVOfh0*M_D*Ya!m>?
zJ|KB_HAQPQEoX9NVRK~)ICX4fF<Li7Y)x@7QEF*%D{^pebZ=oRWK48-GDtH?H(_}(
zS5t3cYjavhXe)J4L|H{hcxN_KW^zSmY;0;t3OQ(4Oj$2tLu*AhLQi&gQ+G&KZ*w(z
zbX7TPbvRK9EiEk|YfNTnZEsOfFlAY8PG&?|b9s76ayDl}Y%wu8W=2<YadTNqYiN3Q
zZD(@|5Veam3Kv%*tB=J}#Atdk83L1r$C+mV26dF2u_qW{CQsl0Be30E7b~PH*RY<~
z@oLziS>NrQU^0<)(S>MnayU|J9!^qNV(q#rtJ|FEp!!}0-<8`mjFeN07~$<SgzLw8
zqa<-Wl35SJdtrW<Cb<+ORH;3ro(twq`_t<e6YA@f6&J)L+T=Sta%mk7CJ^JSeF^lX
z%PBglH3hQmc8b7Qc>n(exK0r<3liuMG5QbFt&PO(@m(L_ZjHb1I6RMj?f$N}R*i-Z
z0g&~<?;JO!UI;BKI-GtqL1LbZv0N4vC2@dCY!68^vWkrV$|adD{6T<$<6hdHN~E2w
z36b&FnS4)~YeF>Qw(Ts|ASkAHFocOAq3&;dUC3kx=!O_rD%$5|#TD<Z0JL552K(`M
zAH;yiBcmWYiCUj|7KRMB<)V`-9gi)5M$6YONZWEn&faC8<L=EcC5eKcD9H&51U$)u
za0ix9P-eT&&-SGh`MViDW|rqKZwqez*LH(=wo>`oL7{>bgW|Fn<>8FOhBjur^`grr
zF};{Y^@!=h7ZYnO5zjJ8Z`3#!!c_fy+PJX!py_A!gU7l!IuF45R|E~)%QfH^S`Scp
z&&iS0QeTDiO0Lf2u8-JrZCK%o><V=?;AnBF;|7r&sNhV!1<C!q>D9_IN7*BI&3?iw
z`)WKUh2y;vN0M1k@t0#F1f+w{eJcw;cUYZjI|3Jzn+~jCFdC>iuZ1LV#w_=XGb%P^
zVQBOg9;ZqAp<acaqL1doJ*s>PGuw)4wk{+)KTe>gxMu&V9d01Q!nvDQFXhE$2>T7i
zqi(2ncypUj(i5r#k-+L?2QaRKmCLBzL9)qOH*-;QaBG0IyJccle&fP}tHTmjwu>5Y
z`Bb(wF-wZrD3D?K+6a^5rZ4Ti%_IP~CUGTfy*YBorPr_&kRp+cl8CDMN56v%I;-@}
zk45f-l9GJGG8Sd=dJ%|BGNrz}94dT8nD(FRD>R_<pub=_(ts8frwk`5zz8=s8H}D%
zsVA6Bh}y4V&{%-Dm)Z-H$CU^S;B#Pi&#znFCD@@FdEpZ?3e+hZqFb~yT;M_4qmqc;
zZ)DXC2<6`&8S#1c4Om}eXhem6klKWOigh9`<ZH=EWAw6H9&A4nMXQGZ4Z<p$uR&Op
zpD2@A2j*x~?lfWbQrKfpPFfkHlXLAqQ8;tVIBX<CMCnVrN_GDQvE1b6gzEwdQsO9>
zxqIS^v$py5+@R!ENuGs`$O!&B-^8tt_YtVrXn(>YBGo5^aY8>jc>Sxf@tp=(F{Db5
zy3^m>5)nom*u!R&Sd%4%idxL1DAn$22}1%XU4mhUjK!y3nqq{|`Q4T+e~9e(EWATW
zEDu1g#@HWeo(|12XH-BzHVk(8_b_06mH2W(zN<LzKjy{xVET_*)x?NR@L|(mvosq5
z&Ra7zG`j5$DR6FuPZVpJq_I*@D?QAKYJepw8KSo?aIJ%zOKFkntt&0s6ncyF9UCCu
z6<{GbfWN`}C@YaPmrLvg5HIffQWF8<)mT~bx9({Mf7ha*<WD@I+M94VUfxHLVE2fv
zqz`p=O@~#D$>kS<kF*;c<1Z5W%vK&ztH}*Q5gpvL3K^@h@`b6odapZB?RclOjtVCd
zWFs$w!I0+Ean{f#Ya0yy4HzTQQ1bo(r`4m4A3)?wlsqqq&!AxN>CsEEd+DxSJ5p^6
z)zB73Jv%AL8>O|7{5XSP36gdlEd+_C^}<e!bxZFy$*H?D=*r<Azxj3HM}%1-!sv}>
zq7RX#9O+l?9qM2>Xju;(iZy0URN)^0KczcwGqJ8|S01TKTXSfgYl9dpR5&*q5=E?6
z|7ETZ{X7%;FU5h!`6v9ApeyH?{t>n!4Sk4E`ypRuWag+xs9TSvOJ9pk!Yr7Gff8EB
zS3g`hhhuXmYwv#u2!~3*eh+Ry$Bm($-k4h<nqJBk`w-gND0(*FhlQ#I)3zWe$Fyz?
zg<kQMgwAY1Z@KkcWn>xltu%Gl+8eviIlt#6<ST}8_|Z}8k3Eaw=k57X0>bxy@j)?(
zDTBc#bF>EYOZUJ5$7m~V0hLvJeSOU<X*Y-K>Sj4^ecncw3A^6PZE?Fvl?(^AjdRR@
zU|MQRRv(qUoMhFXt)6q&ltF<p3w|;(YiTI~Z4!DqqK-;ocwE19r{0I6`Us>vf!*T3
zP)UP)Y0uASGX#HcI8EVZyZMu&*iAt_zohS#K?yx{d81p2jwWMJR7lp|_R2kkl!sXJ
zDjxejpkFg|*U&9=c~x(r5*Uni24o&Mh?I_oyHl_n{4`N)^{s4N_a_5UOl%*gfW9e3
z$(_pa&q_ko8XHic6sT)lznA2<!R73mwC2DB7WvRqd#M*zbzka%9uCFBL}&~?l0I)S
z7~=R~VIH3&D9!cO=pVNRwAXiAQ#gIT<ebxYqrtpWE+11vnRqOe$5UTe(EScl%<WV*
z`-aD+22T82Mva~8W-6o<Q7=V5q~)eeP-$l&nT{|MWuX3FmN?R>(L*cA>$=n)o3vy?
z1YnK}^^M!V?f8J6)g%`4so$nEFR%QIHMV8X)IT3}nTI;>-$2F^BSI)Mc^|_#w#*h{
zWXByTeyX+BQg9oeoxl#SwYbyRo7@3v69s0mYp>|pgI6#yZCh_Roi+LO8efO9M?G{a
z;g0cPf;0^T_(YZV7a_w=*>G8p8o>Oo2_L6|)0Fa2nqxmnc&ZIgoTjOM<{#Pty{6q0
zHZ}9r#grwUmW?qso&M&@MYT-NaqdxUcMhGo45r5;6>XIZZ)0UgNJf-t8?>9tzHI8<
zDL-$eUFZXr{};u&<x0Z@2jCtl2|>#A@jnZg*M2m$Xrp=YaTbjzk~GL+JqS-d<mY%W
zuGnd-B|Um?4-*|CACA<AYQMbxMXp(oB$c_|^8HHyx-jL=KuHhDG>hktb>ljz2y3uF
zZYLPCw##miPp^{$FrJsv9P+4ina^seV0^SR`{L(XpONx`X_d;T+`1|b*Nz!%u2g?F
z?#N;RJT34m1fRWR3te&{0`x<Pt~0(st*>D~{+u<wePL!J2p_Rx_=|QxFgPQ>Pw*vH
zB@g^5e_DU}X}uKq<QAsXo}m$B{fty1)OT*3+Vbu-sOzsYMSlDbd9BtMA;XC}56PcT
zQe%(?Fc4n331MOLu@)pVAhvO>x%w$TVxy14c$5g$;P1l9Sv>2%nvUJUp7R(2O<xd|
zt%9DzWnICbw?8^i3&kY2;$^51V^$*<Kn$&0fR-_7qK(K5c&PU#ySB01ev<Wykj_U^
z%T%L>35vV(V)A`vsOf~w;phNp=|18asT)?9=cCag5EV9&!XFK2nT(TxsE;tO-*aFP
z?u-CLKIPTM*0%}zw^B|R8R&(Kpp<Z7=e?S1HrlXDofI1!dB{TM2ap5qqH?4LBdo*Z
z5w@hAVNM(ic*02x{r5OwpGOh}m<c!1_tX+`pMfUuOAct59OOUfLfiSQ{^>@^sV#T)
z`||Qlju#_8>z8jJkoc})y>w=JWD<|T`VWenH_EdIm?h=j!9@+)M(uVBp`WZ=56-0T
zzkuJM<v^x+p^s1jPBhIw-7`!@ibFrurBdrK=FR^0vSNmt=X|v~@W-#YHcGj2m1n9X
zN<nrq52*;1p{Wz96+`6LP}v%!qS)L!ryl=P7$O0i$)c=CWxq)lk?q_qZ+2<_hz^Xf
zL%*e4aXr#)7OS#dOhoue3-LpP0PJf`bNb}$10cN`r*8u28zMfFYNxgWXElfyB?iQc
zT2?{m2A1kvA?w7z>w;FE8U|~bwnUaH3hV_f)O4EYlVXW(X>6*BS2$XR{$C+;k#lmK
zuW_dGobF^^+&2U=lp;(aoXg7Z7V)jN?p{*#5b(OWXVt^07Py1}ZK0B0?hY?o#Rz@$
zh%V=zN%>}nJ+chJyK^g|&{<v)-gG7LGws-p+AI}^h*|9-eI|#82PESsd+JIb7Tl#L
zdF!7!6<1P@w_Gd+3nSqRW_H*%Fw--U2%$#$cC-ae%10PRhM>u9lQiUAkBH%%TX!f|
z`nKC@o1{fr(=nr;2EetHVHJ<hVzh_OFX~5EH3#p>q#&BH&0DC;>xws_qcs~vJF2Vi
z11hv1cMbN+m#*SyXb7uvJ?6yNI?r_{d2$)}>fr<=pSl;ywsH3jX-eou<+vam3O|mh
zmYItgVcfU{L>*$mYx3Yn{;geU6ux#4Hc!2{>f;&cyZ5@Rj^)L#rAWo;H8MX>#|IAv
z1!9BOrx2H0Ml7;DggRX#aMY6#*`{>&nuSqk)gvF51CvK75aswq*AJn|%HZtYsneYI
zG0p^bb_6fJZPI%ks#s5-H)_VCz84hig9Buy%6l&TVb>-m?HpU9I$n^uU%+%9Oq1F&
zF~@0cISbK+?Sat`Y8JBF@lztdo?3H<EWId21?I4?8$PZzZNx0bzt`4YRRc}ym-ExC
z{-zs8t{(IBlyXwkcj}r+5i`El${$Wv!mMbFoo1lh93*|b-K$LAciR^TpYsM^IL+O6
zGKj2?V6HE0?cH^7gd)eic>9xbjXXTDVI`aAQ<$rVC@wD+Js}V9cSs53XCKfi;z)~$
zO_Tc8*a^=d(Sr?z#%Z1Fk7q0({RlF-F=N;+JOF1HFzUu?>e9$u#8|b}YTQzHCPp35
zIo<fi@z>#G5S|-?k*$kOl!|Hh=G8R8Wb1aLHh}lCpSQ-700J>`zK-;u#<WRD&F~&7
z#UK=ATsU5M<I4r1RY^n!1KAMLVPd@Zv0fUu624nb<u*zMXjiVhP|FNn;di5L0K&J;
zpB5lEJ*D~Oiy71biD}XO@Qdut%T`PjZSzx0r7Kcch2BF~rqh8vq8Tr!IvC!tDC`r+
z@GV1iRgw`7*_$sM6b*;Z6w>Izufag|A%nc$dSYAndUP-f!&1v@XP5-KN5>XTSqV%8
z;h`<*AoFdAcYj7eo@A6%G<9}~<IOY$q^4=t21}>EfjtT6)Nrnm8&s`XboI`E!c`wi
zmCzroE$M(i=uC+U>H+lLs<s2_W7F<oUa*^)-mD?KQkX0ei`tsONRYU)gwOmKYBDy_
zvdZ5_v@!9{`?aI>JP*(7bA$|?h>V(ZT^0>({m!o(BXA)iVr8c3iU^FQrDuY!>>dN{
IWmroZG{px*C;$Ke

literal 0
HcmV?d00001

diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index 89f4c488..c0b0aa89 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -15,6 +15,8 @@ in {
   "github-api-token.age".publicKeys = allKeys;
   "fwknoprc.age".publicKeys = allKeys;
   "cat-testenv.ovpn.age".publicKeys = allKeys;
+  "mnx-bonanza-pf1.ovpn.age".publicKeys = allKeys;
+  "mnx-bonanza-pf1.p12.age".publicKeys = allKeys;
   "docker-ci-runner-secrets.age".publicKeys = allKeys;
   "test-secret.age".publicKeys = [users.teutat3s-5-nfc];
 }
diff --git a/users/teutat3s/mnx.nix b/users/teutat3s/mnx.nix
index 001fab09..9620780a 100644
--- a/users/teutat3s/mnx.nix
+++ b/users/teutat3s/mnx.nix
@@ -10,6 +10,17 @@ with lib; let
   xdg = config.home-manager.users."${psCfg.user.name}".xdg;
 in {
   config = {
+    age.secrets."mnx-bonanza-pf1.ovpn" = {
+      file = "${self}/secrets/mnx-bonanza-pf1.ovpn.age";
+      mode = "600";
+      owner = psCfg.user.name;
+    };
+    age.secrets."mnx-bonanza-pf1.p12" = {
+      file = "${self}/secrets/mnx-bonanza-pf1.p12.age";
+      mode = "600";
+      owner = psCfg.user.name;
+    };
+
     environment = {
       systemPackages = with pkgs; [
         networkmanager-fortisslvpn
@@ -17,6 +28,13 @@ in {
       ];
     };
 
+    services.openvpn.servers = {
+      bonanzaVPN = {
+        config = ''config ${config.age.secrets."mnx-bonanza-pf1.ovpn".path}'';
+        autoStart = false;
+      };
+    };
+
     programs._1password-gui = {
       enable = true;
       polkitPolicyOwners = ["teutat3s"];