CaZzzer/nix-conf
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

WIP: router: dns: add entries for sysdomain hosts

Browse Source
This commit is contained in:
Yuri Tatishchev 2025-03-25 22:49:10 -07:00
parent 1248086964
commit 8290063bca
Signed by: CaZzzer
GPG Key ID: E0EBF441EA424369
1 changed files with 13 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
hosts/router/dns.nix
View File

@ -51,6 +51,10 @@ in
"tls://one.one.one.one" "tls://one.one.one.one"
"tls://dns.quad9.net" "tls://dns.quad9.net"
# Adguard uses upstream and not rewrite rules to resolve cname rewrites,
# and obviously my sysdomain entries don't exist in cloudflare.
"[/${sysdomain}/][::1]" # Sys domains to self (for cname rewrites)
"[/${ldomain}/][::1]:1053" # Local domains to Knot (ddns) "[/${ldomain}/][::1]:1053" # Local domains to Knot (ddns)
"[/home/][${ifs.lan.ulaPrefix}::250]" # .home domains to opnsense (temporary) "[/home/][${ifs.lan.ulaPrefix}::250]" # .home domains to opnsense (temporary)
]; ];
@ -63,26 +67,27 @@ in
"|pve-3.${sysdomain}^$dnsrewrite=${ifs.lan.p4}.7" "|pve-3.${sysdomain}^$dnsrewrite=${ifs.lan.p4}.7"
"|pve-1.${sysdomain}^$dnsrewrite=${vars.hosts.lan.pve-1.ulaAddr}" "|pve-1.${sysdomain}^$dnsrewrite=${vars.hosts.lan.pve-1.ulaAddr}"
"|pve-3.${sysdomain}^$dnsrewrite=${ifs.lan.ulaPrefix}::7:1" "|pve-3.${sysdomain}^$dnsrewrite=${ifs.lan.ulaPrefix}::7:1"
# This double cname thing doesn't work btw, TODO: remove "|truenas.${sysdomain}^$dnsrewrite=${ifs.lan.p4}.10"
"|debbi.${sysdomain}^$dnsrewrite=debbi.4.${ifs.lan.domain}" "|truenas.${sysdomain}^$dnsrewrite=${ifs.lan.ulaPrefix}::20d0:43ff:fec6:3192"
"|debbi.${sysdomain}^$dnsrewrite=debbi.6.${ifs.lan.domain}" "|debbi.${sysdomain}^$dnsrewrite=${ifs.lan.p4}.11"
"|debbi.${sysdomain}^$dnsrewrite=${ifs.lan.ulaPrefix}::11:1"
"|etappi.${sysdomain}^$dnsrewrite=${ifs.lan.p4}.12"
"|etappi.${sysdomain}^$dnsrewrite=${ifs.lan.ulaPrefix}::12:1"
"||lab.${domain}^$dnsrewrite=${ifs.lan.p6}::12:1" # Lab DNS rewrites
"||lab.${domain}^$dnsrewrite=${ifs.lan.p4}.12" "||lab.${domain}^$dnsrewrite=etappi.${sysdomain}"
# Allowed exceptions # Allowed exceptions
"@@||googleads.g.doubleclick.net" "@@||googleads.g.doubleclick.net"
] ]
# Alpina DNS rewrites # Alpina DNS rewrites
++ map (host: "${host}${domain}^$dnsrewrite=${ifs.lan.p6}:1cd5:56ff:feec:c74a") alpinaDomains ++ map (host: "${host}${domain}^$dnsrewrite=debbi.${sysdomain}") alpinaDomains;
++ map (host: "${host}${domain}^$dnsrewrite=${ifs.lan.p4}.11") alpinaDomains;
}; };
services.knot.enable = true; services.knot.enable = true;
services.knot.settings = { services.knot.settings = {
# server.listen = "0.0.0.0@1053"; # server.listen = "0.0.0.0@1053";
server.listen = "::1@1053"; server.listen = "::1@1053";
# TODO: templates
zone = [ zone = [
{ {
domain = ldomain; domain = ldomain;