commit 4c181d179b765d4bfdeb66652f7b2737920bc2f4 · pyrox.dev/nixpkgs

+34 -2
nixos/modules/services/networking/bind.nix
···

       8
       8
        
       

     

       9
       9
        
         bindUser = "named";

     

       10
       10
        
       

     

       11
       11
       +
         bindZoneOptions = {

     

       12
       12
       +
           name = mkOption {

     

       13
       13
       +
             type = types.str;

     

       14
       14
       +
             description = "Name of the zone.";

     

       15
       15
       +
           };

     

       16
       16
       +
           master = mkOption {

     

       17
       17
       +
             description = "Master=false means slave server";

     

       18
       18
       +
             type = types.bool;

     

       19
       19
       +
           };

     

       20
       20
       +
           file = mkOption {

     

       21
       21
       +
             type = types.str;

     

       22
       22
       +
             description = "Zone file resource records contain columns of data, separated by whitespace, that define the record.";

     

       23
       23
       +
           };

     

       24
       24
       +
           masters = mkOption {

     

       25
       25
       +
             type = types.listOf types.str;

     

       26
       26
       +
             description = "List of servers for inclusion in stub and secondary zones.";

     

       27
       27
       +
           };

     

       28
       28
       +
           slaves = mkOption {

     

       29
       29
       +
             type = types.listOf types.str;

     

       30
       30
       +
             description = "Addresses who may request zone transfers.";

     

       31
       31
       +
             default = [];

     

       32
       32
       +
           };

     

       33
       33
       +
           extraConfig = mkOption {

     

       34
       34
       +
             type = types.str;

     

       35
       35
       +
             description = "Extra zone config to be appended at the end of the zone section.";

     

       36
       36
       +
             default = "";

     

       37
       37
       +
           };

     

       38
       38
       +
         };

     

       39
       39
       +
       

     

       11
       40
        
         confFile = pkgs.writeText "named.conf"

     

       12
       41
        
           ''

     

       13
       42
        
             include "/etc/bind/rndc.key";

     
···

       72
       101
        
       

     

       73
       102
        
             cacheNetworks = mkOption {

     

       74
       103
        
               default = ["127.0.0.0/24"];

     

       104
       104
       +
               type = types.listOf types.str;

     

       75
       105
        
               description = "

     

       76
       106
        
                 What networks are allowed to use us as a resolver.  Note

     

       77
       107
        
                 that this is for recursive queries -- all networks are

     
···

       83
       113
        
       

     

       84
       114
        
             blockedNetworks = mkOption {

     

       85
       115
        
               default = [];

     

       116
       116
       +
               type = types.listOf types.str;

     

       86
       117
        
               description = "

     

       87
       118
        
                 What networks are just blocked.

     

       88
       119
        
               ";

     
···

       90
       121
        
       

     

       91
       122
        
             ipv4Only = mkOption {

     

       92
       123
        
               default = false;

     

       124
       124
       +
               type = types.bool;

     

       93
       125
        
               description = "

     

       94
       126
        
                 Only use ipv4, even if the host supports ipv6.

     

       95
       127
        
               ";

     
···

       97
       129
        
       

     

       98
       130
        
             forwarders = mkOption {

     

       99
       131
        
               default = config.networking.nameservers;

     

       132
       132
       +
               type = types.listOf types.str;

     

       100
       133
        
               description = "

     

       101
       134
        
                 List of servers we should forward requests to.

     

       102
       135
        
               ";

     
···

       120
       153
        
       

     

       121
       154
        
             zones = mkOption {

     

       122
       155
        
               default = [];

     

       156
       156
       +
               type = types.listOf (types.submodule [ { options = bindZoneOptions; } ]);

     

       123
       157
        
               description = "

     

       124
       158
        
                 List of zones we claim authority over.

     

       125
       125
       -
                   master=false means slave server; slaves means addresses

     

       126
       126
       -
                  who may request zone transfer.

     

       127
       159
        
               ";

     

       128
       160
        
               example = [{

     

       129
       161
        
                 name = "example.com";