public/authoritative-dns
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Try switching back to basic NSD

Browse Source
This commit is contained in:
niten 2023-10-05 11:15:57 -07:00
parent a70fe2d5e6
commit e7247f85c0
1 changed files with 8 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
authoritative-dns.nix
View File

@ -67,16 +67,21 @@ in {
imports = [ ./nsd.nix ]; imports = [ ./nsd.nix ];
config = mkIf cfg.enable { config = mkIf cfg.enable {
services.fudo-nsd = { fileSystems."/var/lib/nsd" = {
device = cfg.state-directory;
options = [ "bind" ];
};
services.nsd = {
enable = true; enable = true;
identity = cfg.identity; identity = cfg.identity;
interfaces = cfg.listen-ips; interfaces = cfg.listen-ips;
stateDirectory = cfg.state-directory; # stateDirectory = cfg.state-directory;
zones = mapAttrs' (dom: domCfg: zones = mapAttrs' (dom: domCfg:
let zoneCfg = domCfg.zone; let zoneCfg = domCfg.zone;
in nameValuePair "${dom}." { in nameValuePair "${dom}." {
dnssec = domCfg.ksk.key-file != null; dnssec = domCfg.ksk.key-file != null;
ksk.keyFile = domCfg.ksk.key-file; # ksk.keyFile = domCfg.ksk.key-file;
data = zoneToZonefile cfg.timestamp dom domCfg.zone-definition; data = zoneToZonefile cfg.timestamp dom domCfg.zone-definition;
}) cfg.domains; }) cfg.domains;
}; };