ellmau/nixos
1
0
Fork 0
mirror of https://github.com/ellmau/nixos.git synced 2025-12-19 09:29:36 +01:00
Code Issues Projects Releases Wiki Activity

Add unbound service to server

Browse Source
This commit is contained in:
Stefan Ellmauthaler 2022-07-19 11:11:49 +02:00
parent 68c413212d
commit a75c2ae69a
Signed by: ellmau
GPG Key ID: C804A9C1B7AF8256
2 changed files with 32 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
modules/server/default.nix
View File

@ -12,6 +12,7 @@ with lib; {
./nginx.nix ./nginx.nix
./smailserver.nix ./smailserver.nix
./sql.nix ./sql.nix
./unbound.nix
]; ];
config = config =
@ -24,6 +25,7 @@ with lib; {
sql.enable = mkDefault true; sql.enable = mkDefault true;
smailserver.enable = mkDefault false; # TODO fix simple mail server smailserver.enable = mkDefault false; # TODO fix simple mail server
nextcloud.enable = mkDefault true; nextcloud.enable = mkDefault true;
unbound.enable = mkDefault true;
}; };
}; };
} }

30
modules/server/unbound.nix Normal file
View File

@ -0,0 +1,30 @@
{ config, lib, pkgs, ... }:
with lib; {
options.elss.server.unbound.enable = mkEnableOption "Set unbound dns up";
config =
let
cfg = config.elss.server.unbound;
in
mkIf cfg.enable {
services = {
resolved = {
enable = true;
dnssec = "true";
llmnr = "true";
fallbackDns = [ "127.0.0.1" "::1" ];
extraConfig = ''
DNS = 127.0.0.1 ::1
Domains = ~.
'';
};
unbound = {
enable = true;
settings.server.interface = [ "127.0.0.0" "::1" ];
};
};
networking = {
nameservers = [ "127.0.0.1" "::1"];
resolvconf.useLocalResolver = true;
};
};
}