From 282bc4abc4f6a5f2f5aac6df8ee55308a1ea458a Mon Sep 17 00:00:00 2001 From: Garionion Date: Thu, 14 Jul 2022 22:15:55 +0200 Subject: [PATCH] dns: add hw config, set dns server as default, fix firewall rule --- common/default.nix | 1 + hosts/dns/dns.nix | 2 +- hosts/dns/hardware-configuration.nix | 38 ++++++++++++++++++++++++++++ 3 files changed, 40 insertions(+), 1 deletion(-) diff --git a/common/default.nix b/common/default.nix index beeb47f..0b80ce1 100644 --- a/common/default.nix +++ b/common/default.nix @@ -9,6 +9,7 @@ networking.firewall.allowedTCPPorts = [ 19999 ]; services.netdata.enable = true; + networking.nameservers = [ "2a01:4f8:1c0c:8221::8" "10.42.10.8" ]; services.qemuGuest.enable = true; # Select internationalisation properties. diff --git a/hosts/dns/dns.nix b/hosts/dns/dns.nix index bdad68d..585c91d 100644 --- a/hosts/dns/dns.nix +++ b/hosts/dns/dns.nix @@ -1,7 +1,7 @@ { config, pkgs, lib, ...}: { - networking.firewall.interfaces.ens19.allowedUDPPorts = [ 53 ]; + networking.firewall.interfaces.ens18.allowedUDPPorts = [ 53 ]; services.coredns = { enable = true; config = '' diff --git a/hosts/dns/hardware-configuration.nix b/hosts/dns/hardware-configuration.nix index e69de29..271288f 100644 --- a/hosts/dns/hardware-configuration.nix +++ b/hosts/dns/hardware-configuration.nix @@ -0,0 +1,38 @@ +# Do not modify this file! It was generated by ‘nixos-generate-config’ +# and may be overwritten by future invocations. Please make changes +# to /etc/nixos/configuration.nix instead. +{ config, lib, pkgs, modulesPath, ... }: + +{ + imports = + [ (modulesPath + "/profiles/qemu-guest.nix") + ]; + + boot.initrd.availableKernelModules = [ "ata_piix" "uhci_hcd" "virtio_pci" "virtio_scsi" "sd_mod" "sr_mod" ]; + boot.initrd.kernelModules = [ ]; + boot.kernelModules = [ "kvm-intel" ]; + boot.extraModulePackages = [ ]; + + fileSystems."/" = + { device = "/dev/disk/by-uuid/6f759f18-9d4d-4c2d-aba8-d42fee23bd62"; + fsType = "ext4"; + }; + + fileSystems."/boot" = + { device = "/dev/disk/by-uuid/4B77-61C7"; + fsType = "vfat"; + }; + + swapDevices = + [ { device = "/dev/disk/by-uuid/64b108b1-b7de-41ce-922d-34d63d669e0c"; } + ]; + + # Enables DHCP on each ethernet and wireless interface. In case of scripted networking + # (the default) this is the recommended approach. When using systemd-networkd it's + # still possible to use this option, but it's recommended to use it in conjunction + # with explicit per-interface declarations with `networking.interfaces..useDHCP`. + networking.useDHCP = lib.mkDefault true; + # networking.interfaces.ens18.useDHCP = lib.mkDefault true; + + hardware.cpu.intel.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware; +} \ No newline at end of file