dadada/nix-config
dadada/nix-config
1
0
Fork 0
Code Issues 2 Pull requests 5 Projects Releases Packages Wiki Activity Actions

Added config for uwupn

Browse source
This commit is contained in:
Tim Schubert 2022-02-05 14:05:13 +01:00
parent e659af4ae8
commit 62e288ea68
Signed by: dadada
GPG key ID: EEB8D1CE62C4DFEA
3 changed files with 35 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

18
nixos/gorgon/configuration.nix
View file

@ -38,7 +38,10 @@ in
luks.uuid = "3d0e5b93-90ca-412a-b4e0-3e6bfa47d3f4"; luks.uuid = "3d0e5b93-90ca-412a-b4e0-3e6bfa47d3f4";
networking = { networking = {
enableBsShare = true; enableBsShare = true;
useLocalResolver = true; localResolver = {
enable= true;
uwu= true;
};
vpnExtension = "3"; vpnExtension = "3";
}; };
backupClient = { backupClient = {
@ -116,6 +119,19 @@ in
"10.1.2.9" = [ "fgprinter.fginfo.tu-bs.de" ]; "10.1.2.9" = [ "fgprinter.fginfo.tu-bs.de" ];
}; };
networking.wireguard.interfaces.uwupn = {
ips = [ "10.11.0.24/32" "fc00:1337:dead:beef::10.11.0.24/128" ];
privateKeyFile = "/var/lib/wireguard/uwu";
peers = [
{
publicKey = "tuoiOWqgHz/lrgTcLjX+xIhvxh9jDH6gmDw2ZMvX5T8=";
allowedIPs = [ "10.11.0.0/22" "fc00:1337:dead:beef::10.11.0.0/118" ];
endpoint = "53c70r.de:51820";
persistentKeepalive = 25;
}
];
};
hardware.opengl = { hardware.opengl = {
enable = true; enable = true;
extraPackages = with pkgs; [ extraPackages = with pkgs; [

21
nixos/modules/networking.nix
View file

@ -6,7 +6,10 @@ in
{ {
options = { options = {
dadada.networking = { dadada.networking = {
useLocalResolver = mkEnableOption "Enable local caching name server"; localResolver = {
enable = mkEnableOption "Enable local caching name server";
uwu = mkEnableOption "Enable uwupn";
};
wanInterfaces = mkOption { wanInterfaces = mkOption {
type = with types; listOf str; type = with types; listOf str;
description = "WAN network interfaces"; description = "WAN network interfaces";
@ -22,10 +25,10 @@ in
}; };
config = { config = {
networking.resolvconf.useLocalResolver = mkIf cfg.useLocalResolver true; networking.resolvconf.useLocalResolver = mkIf cfg.localResolver.enable true;
networking.networkmanager.dns = mkIf cfg.useLocalResolver "unbound"; networking.networkmanager.dns = mkIf cfg.localResolver.enable "unbound";
services.unbound = mkIf cfg.useLocalResolver { services.unbound = mkIf cfg.localResolver.enable {
enable = true; enable = true;
settings = { settings = {
server = { server = {
@ -53,7 +56,9 @@ in
]; ];
private-domain = [ private-domain = [
"dadada.li" "dadada.li"
(mkIf cfg.localResolver.uwu "uwu")
]; ];
domain-insecure = mkIf cfg.localResolver.uwu "uwu";
interface = [ interface = [
"127.0.0.1" "127.0.0.1"
"::1" "::1"
@ -70,6 +75,14 @@ in
"149.112.112.112@853#dns.quad9.net" "149.112.112.112@853#dns.quad9.net"
]; ];
} }
(mkIf cfg.localResolver.uwu {
name = "uwu.";
forward-addr = [
"fc00:1337:dead:beef::10.11.0.1"
"10.11.0.1"
];
}
)
]; ];
}; };
}; };

2
nixos/modules/profiles/server.nix
View file

@ -9,7 +9,7 @@ in {
"dadada" = keys; "dadada" = keys;
}; };
dadada.networking.useLocalResolver = true; dadada.networking.localResolver.enable = true;
dadada.autoUpgrade.enable = mkDefault true; dadada.autoUpgrade.enable = mkDefault true;