chvp/nixos-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

wireguard: Change private TLD to internal

Browse source 
https://www.theregister.com/2024/01/29/icann_internal_tld/
This commit is contained in:
Charlotte Van Petegem 2024-01-30 16:41:11 +01:00
parent a13a3ff6d9
commit 978e7c2a1a
No known key found for this signature in database
GPG key ID: 019E764B7184435A
1 changed files with 5 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

10
modules/base/network/wireguard.nix
View file

@ -58,10 +58,10 @@ in
"127.0.0.0/8 allow"
"10.240.0.0/24 allow"
];
private-domain = "private";
domain-insecure = "private";
local-zone = builtins.map (name: ''"${name}.private" redirect'') (builtins.attrNames data);
local-data = builtins.map (name: ''"${name}.private IN A ${data.${name}.ip}"'') (builtins.attrNames data);
private-domain = "internal";
domain-insecure = "internal";
local-zone = builtins.map (name: ''"${name}.internal" redirect'') (builtins.attrNames data);
local-data = builtins.map (name: ''"${name}.internal IN A ${data.${name}.ip}"'') (builtins.attrNames data);
};
forward-zone = {
name = ''"."'';
@ -120,7 +120,7 @@ in
enable = true;
name = "wg0";
address = [ "${data.${config.networking.hostName}.ip}/32" ];
domains = [ "private" ];
domains = [ "internal" ];
dns = [ data.lasting-integrity.ip ];
linkConfig.MTUBytes = "1342";
routes = [{