pub-solar/infra
6
2
Fork 3
Code Issues33 Pull requests11 Projects1 Releases Packages Wiki Activity Actions

core/networking: convert DNS resolved config to NixOS options #322

Merged
teutat3s merged 1 commit from dns-convert-to-options into main 2025-04-02 19:38:34 +00:00
Conversation 0 Commits 1 Files changed 1 +23 -6
teutat3s commented 2025-03-28 15:36:57 +00:00
Owner

To help readability. Also added the default config value for DNSSEC
for visibility.

/etc/systemd/resolved.conf before:

teutat3s in 🌐 nachtigall in ~ took 24s
❯ sudo cat /etc/systemd/resolved.conf
[Resolve]



LLMNR=true
DNSSEC=false
DNSOverTLS=false
DNS=193.110.81.0#dns0.eu 185.253.5.0#dns0.eu 2a0f:fc80::#dns0.eu 2a0f:fc81::#dns0.eu 9.9.9.9#dns.quad9.net 149.112.112.112#dns.quad9.net 2620:fe::fe#dns.quad9.net 2620:fe::9#dns.quad9.net
FallbackDNS=5.1.66.255#dot.ffmuc.net 185.150.99.255#dot.ffmuc.net 2001:678:e68:f000::#dot.ffmuc.net 2001:678:ed0:f000::#dot.ffmuc.net
Domains=~.
DNSOverTLS=yes

/etc/systemd/resolved.conf after:

nix-repl> nixosConfigurations.nachtigall.config.environment.etc."systemd/resolved.conf".text

...
[Resolve]
DNS=193.110.81.0#dns0.eu 185.253.5.0#dns0.eu 9.9.9.9#dns.quad9.net 149.112.112.112#dns.quad9.net 2a0f:fc80::#dns0.eu 2a0f:fc81::#dns0.eu 2620:fe::fe#dns.quad9.net 2620:fe::9#dns.quad9.net
FallbackDNS=5.1.66.255#dot.ffmuc.net 185.150.99.255#dot.ffmuc.net 2001:678:e68:f000::#dot.ffmuc.net 2001:678:ed0:f000::#dot.ffmuc.net
Domains=~.
LLMNR=true
DNSSEC=false
DNSOverTLS=true
To help readability. Also added the default config value for DNSSEC for visibility. `/etc/systemd/resolved.conf` before: ``` teutat3s in 🌐 nachtigall in ~ took 24s ❯ sudo cat /etc/systemd/resolved.conf [Resolve] LLMNR=true DNSSEC=false DNSOverTLS=false DNS=193.110.81.0#dns0.eu 185.253.5.0#dns0.eu 2a0f:fc80::#dns0.eu 2a0f:fc81::#dns0.eu 9.9.9.9#dns.quad9.net 149.112.112.112#dns.quad9.net 2620:fe::fe#dns.quad9.net 2620:fe::9#dns.quad9.net FallbackDNS=5.1.66.255#dot.ffmuc.net 185.150.99.255#dot.ffmuc.net 2001:678:e68:f000::#dot.ffmuc.net 2001:678:ed0:f000::#dot.ffmuc.net Domains=~. DNSOverTLS=yes ``` `/etc/systemd/resolved.conf` after: ``` nix-repl> nixosConfigurations.nachtigall.config.environment.etc."systemd/resolved.conf".text ... [Resolve] DNS=193.110.81.0#dns0.eu 185.253.5.0#dns0.eu 9.9.9.9#dns.quad9.net 149.112.112.112#dns.quad9.net 2a0f:fc80::#dns0.eu 2a0f:fc81::#dns0.eu 2620:fe::fe#dns.quad9.net 2620:fe::9#dns.quad9.net FallbackDNS=5.1.66.255#dot.ffmuc.net 185.150.99.255#dot.ffmuc.net 2001:678:e68:f000::#dot.ffmuc.net 2001:678:ed0:f000::#dot.ffmuc.net Domains=~. LLMNR=true DNSSEC=false DNSOverTLS=true ```
teutat3s added 1 commit 2025-03-28 15:36:57 +00:00 
To help readability. Also added the default config value for DNSSEC
for visibility.
requested reviews from b12f, hensoko, axeman 2025-03-28 15:37:07 +00:00
hensoko approved these changes 2025-04-02 13:14:52 +00:00
teutat3s merged commit 47502667f5 into main 2025-04-02 19:38:34 +00:00
teutat3s deleted branch dns-convert-to-options 2025-04-02 19:38:34 +00:00
Sign in to join this conversation.
No reviewers
axeman
b12f
hensoko
No labels
Bug
Docs
Feature request
Good for newcomers
Infra
Privacy
Refactoring or migration
Security
No milestone
No project
No assignees
2 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: pub-solar/infra#322
No description provided.
Delete branch "dns-convert-to-options"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?