commit 3921f4641225aa5339f75b349869ed87f127b879 · kitten.sh/system

+5 -1

modules/router/kernel.nix

···

       19
       19
        
             "net.core.somaxconn" = 4096;

     

       20
       20
        
             "net.core.netdev_max_backlog" = 2000;

     

       21
       21
        
       

     

       22
       22
       +
             "net.ipv4.ip_nonlocal_bind" = true;

     

       23
       23
       +
             "net.ipv4.ip_dynaddr" = true;

     

       24
       24
       +
       

     

       22
       25
        
             "net.core.rmem_default" = 1048576;

     

       23
       26
        
             "net.core.rmem_max" = 26214400;

     

       24
       27
        
             "net.core.wmem_default" = 1048576;

     
···

       47
       50
        
             "net.ipv4.tcp_keepalive_intvl" = 10;

     

       48
       51
        
             "net.ipv4.tcp_keepalive_probes" = 6;

     

       49
       52
        
       

     

       50
       50
       -
             "net.core.default_qdisc" = "cake";

     

       53
       53
       +
             "net.core.default_qdisc" = "fq_codel";

     

       51
       54
        
             "net.ipv4.tcp_congestion_control" = "bbr";

     

       55
       55
       +
             "net.ipv4.tcp_window_scaling" = true;

     

       52
       56
        
             "net.ipv4.tcp_syncookies" = true;

     

       53
       57
        
       

     

       54
       58
        
             "net.ipv6.conf.all.forwarding" = true;

+6 -4

modules/router/network.nix

···

       128
       128
        
                   IPv4Forwarding = true;

     

       129
       129
        
                   IPv6Forwarding = true;

     

       130
       130
        
                 };

     

       131
       131
       +
                 cakeConfig = {

     

       132
       132
       +
                   Parent = "root";

     

       133
       133
       +
                 };

     

       131
       134
        
                 dhcpV4Config = {

     

       132
       135
        
                   UseDNS = false;

     

       133
       136
        
                   UseDomains = false;

     
···

       150
       153
        
             } // (optionalAttrs (intern != null) {

     

       151
       154
        
               "11-${intern.name}" = {

     

       152
       155
        
                 name = intern.name;

     

       153
       153
       -
       

     

       154
       156
        
                 networkConfig = {

     

       155
       157
        
                   Address = intern.cidr;

     

       156
       158
        
                   DHCPServer = true;

     
···

       162
       164
        
                   DHCPPrefixDelegation = cfg.ipv6;

     

       163
       165
        
                   IPv6SendRA = cfg.ipv6;

     

       164
       166
        
                 };

     

       165
       165
       -
       

     

       167
       167
       +
                 fairQueueingControlledDelayConfig = {

     

       168
       168
       +
                   Parent = "root";

     

       169
       169
       +
                 };

     

       166
       170
        
                 dhcpServerConfig = {

     

       167
       171
        
                   EmitDNS = true;

     

       168
       172
        
                   EmitNTP = true;

     
···

       171
       175
        
                   DefaultLeaseTimeSec = 43200;

     

       172
       176
        
                   MaxLeaseTimeSec = 86400;

     

       173
       177
        
                 };

     

       174
       174
       -
       

     

       175
       178
        
                 dhcpServerStaticLeases = builtins.map (lease: {

     

       176
       179
        
                   Address = lease.ipAddress;

     

       177
       180
        
                   MACAddress = lease.macAddress;

     

       178
       181
        
                 }) cfg.leases;

     

       179
       179
       -
       

     

       180
       182
        
                 dhcpPrefixDelegationConfig = mkIf cfg.ipv6 {

     

       181
       183
        
                   Announce = true;

     

       182
       184
        
                 };