forked from malobeo/infrastructure
53 lines
927 B
Nix
53 lines
927 B
Nix
{ config, self, lib, inputs, pkgs, ... }:
|
|
|
|
with lib;
|
|
with inputs;
|
|
|
|
let
|
|
dns = inputs.dns;
|
|
in
|
|
{
|
|
networking = {
|
|
hostName = mkDefault "ns1";
|
|
useDHCP = false;
|
|
};
|
|
|
|
imports = [
|
|
../modules/malobeo_user.nix
|
|
../modules/sshd.nix
|
|
../modules/minimal_tools.nix
|
|
../modules/autoupdate.nix
|
|
];
|
|
|
|
networking.firewall = {
|
|
enable = true;
|
|
allowedTCPPorts = [ 53 ];
|
|
allowedUDPPorts = [ 53 ];
|
|
};
|
|
|
|
services.bind = {
|
|
enable = true;
|
|
forwarders = [
|
|
"1.1.1.1"
|
|
"1.0.0.1"
|
|
];
|
|
|
|
cacheNetworks = [
|
|
"127.0.0.0/24"
|
|
"10.0.0.0/24"
|
|
"192.168.1.0/24"
|
|
"10.100.0.0/24"
|
|
];
|
|
|
|
zones = {
|
|
"malobeo.org" = {
|
|
master = true;
|
|
file = pkgs.writeText "zone-malobeo.org" (dns.lib.toString "malobeo.org" (import ../modules/malobeo/zones.nix { inherit inputs; }));
|
|
};
|
|
};
|
|
};
|
|
|
|
system.stateVersion = "22.11"; # Did you read the comment?
|
|
}
|
|
|