From 248df221d83b73bcdcb5280890f7d9be4e596b37 Mon Sep 17 00:00:00 2001
From: niten <niten@fudo.org>
Date: Wed, 13 Oct 2021 08:34:48 -0700
Subject: [PATCH] No reason to put the HTTPS proxy on a public port

---
 config/host-config/limina.nix | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/config/host-config/limina.nix b/config/host-config/limina.nix
index 694e521..7c41c1b 100644
--- a/config/host-config/limina.nix
+++ b/config/host-config/limina.nix
@@ -10,7 +10,7 @@ let
   domain-name = host-config.domain;
   domain = config.fudo.domains.${domain-name};
 
-  dns-proxy-port = 5335;
+  dns-proxy-port = 5335
 
 in {
   config = {
@@ -81,7 +81,7 @@ in {
         bootstrap-dns = "1.1.1.1";
         allowed-networks =
           [ "1.1.1.1/32" "1.0.0.1/32" "10.0.0.0/16" "localhost" "link-local" ];
-        listen-ips = [ primary-ip ];
+        listen-ips = [ "127.0.0.1" ];
       };
     };
 
@@ -102,7 +102,7 @@ in {
             environment = {
               # ServerIP = primary-ip;
               VIRTUAL_HOST = "dns-hole.sea.fudo.org";
-              DNS1 = "${primary-ip}#${toString dns-proxy-port}";
+              DNS1 = "127.0.0.1#${toString dns-proxy-port}";
             };
             volumes = [
               "/state/pihole/etc-pihole/:/etc/pihole/"