os/hosts/pie/networking.nix
Benjamin Bädorf 6d3c677f18
fix: don't use CNAME in unbound
Unbound does not support recursive DNS resolving via it's own
configuration: https://github.com/NLnetLabs/unbound/issues/747

This commit changes the CNAME records to A/AAAA records.
2023-10-22 16:20:57 +02:00

42 lines
873 B
Nix

{
flake,
config,
pkgs,
lib,
...
}: {
networking.hostId = "34234773";
networking.hostName = "pie";
networking.defaultGateway = {
address = "192.168.178.1";
interface = "enabcm6e4ei0";
};
networking.interfaces.enabcm6e4ei0.ipv4.addresses = [
{
address = "192.168.178.2";
prefixLength = 32;
}
];
networking.interfaces.enabcm6e4ei0.ipv6.addresses = [
{
address = "2a02:908:5b1:e3c0:3077:2::";
prefixLength = 128;
}
];
networking.hosts = flake.self.lib.addLocalHostname ["caddy.local"];
networking.firewall.allowedTCPPorts = [ 80 ];
services.openssh.allowSFTP = true;
# Caddy reverse proxy for local services like cups
services.caddy = {
globalConfig = ''
default_bind 192.168.178.2 2a02:908:5b1:e3c0:3077:2:: 10.0.1.2 fd00:acab:1312:acab:2::
auto_https off
'';
};
}