diff --git a/configurations/nixos/defiant/configuration.nix b/configurations/nixos/defiant/configuration.nix
index 7455812..ae69c26 100644
--- a/configurations/nixos/defiant/configuration.nix
+++ b/configurations/nixos/defiant/configuration.nix
@@ -9,6 +9,9 @@
     "vpn-keys/tailscale-authkey/defiant" = {
       sopsFile = "${inputs.secrets}/vpn-keys.yaml";
     };
+    "vpn-keys/proton-wireguard/defiant-p2p" = {
+      sopsFile = "${inputs.secrets}/vpn-keys.yaml";
+    };
     "services/zfs_smtp_token" = {
       sopsFile = "${inputs.secrets}/defiant-services.yaml";
     };
@@ -101,6 +104,24 @@
   };
   networking = {
     hostId = "c51763d6";
+
+    wireguard.interfaces = {
+      p2p = {
+        ips = ["10.2.0.2/32"];
+        listenPort = 51820;
+
+        privateKeyFile = config.sops.secrets."vpn-keys/proton-wireguard/defiant-p2p".path;
+
+        peers = [
+          {
+            publicKey = "rRO6yJim++Ezz6scCLMaizI+taDjU1pzR2nfW6qKbW0=";
+            allowedIPs = ["0.0.0.0/0"];
+            endpoint = "185.230.126.146:51820";
+            persistentKeepalive = 25;
+          }
+        ];
+      };
+    };
   };
 
   services = {