kitten.sh / system
Personal Nix setup
fork atom

Fix up local network resolution

kitten.sh dbea75c2 381ba55f

options
unified split
Changed files
+8 -4
modules
router
network.nix
server
caddy.nix
+4 -4
modules/router/network.nix 
···

       
102

       
102

       
 

       
  in mkIf cfg.enable {


     

       
103

       
103

       
 

       
    networking = {


     

       
104

       
104

       
 

       
      useNetworkd = true;


     

       

       
105

       
+

       
      hosts."127.0.0.2" = mkForce [];


     

       
105

       
106

       
 

       
      firewall = mkIf (intern != null) {


     

       
106

       
107

       
 

       
        trustedInterfaces = [ "lo" intern.name ];


     

       
107

       
108

       
 

       
      };


     
···

       
199

       
200

       
 

       



     

       
200

       
201

       
 

       
    services.resolved = {


     

       
201

       
202

       
 

       
      enable = true;


     

       

       
203

       
+

       
      llmnr = "false";


     

       

       
204

       
+

       
      domains = [ "~." ];


     

       
202

       
205

       
 

       
      fallbackDns = [


     

       
203

       
206

       
 

       
        "1.0.0.1"


     

       
204

       
207

       
 

       
      ] ++ (if cfg.ipv6 then [ "2606:4700:4700::1001" ] else []);


     

       
205

       
208

       
 

       
      dnsovertls = "opportunistic";


     

       
206

       
209

       
 

       
      extraConfig = strings.concatStringsSep "\n" [


     

       
207

       

       
-

       
        ''


     

       
208

       

       
-

       
          [Resolve]


     

       
209

       

       
-

       
          ReadEtcHosts=no


     

       
210

       

       
-

       
        ''


     

       

       
210

       
+

       
        "[Resolve]"


     

       
211

       
211

       
 

       
        (optionalString cfg.mdns ''


     

       
212

       
212

       
 

       
          MulticastDNS=yes


     

       
213

       
213

       
 

       
        '')
+4
modules/server/caddy.nix 
···

       
105

       
105

       
 

       
        :80 {


     

       
106

       
106

       
 

       
          import network_paths


     

       
107

       
107

       
 

       
        }


     

       

       
108

       
+

       



     

       

       
109

       
+

       
        :443 {


     

       

       
110

       
+

       
          import network_paths


     

       

       
111

       
+

       
        }


     

       
108

       
112

       
 

       
      '';


     

       
109

       
113

       
 

       
    };


     

       
110

       
114

       
 

       
  };