Toast/nix-stuff
1
0
Fork 0
Code Issues Pull requests Projects 1 Wiki Activity
nix-stuff/roles/server/dns.nix

40 lines
1.2 KiB
Nix
Raw Blame History

{...}: {
services.dnsmasq = {
enable = true;
# Only using this for tailscale IPs, so better to let tailscale itself deal with it
resolveLocalQueries = false;
settings = {
listen-address = ["100.73.96.48"];
/*
Dnsmasq tries to use the tailscale dns server, which is bad cause that points to dnsmasq
From the little testing I have done it seems to not cause any issues, but better to be safe
than sorry :P
*/
dns-loop-detect = true;
host-record = [
"winmax2,winmax2.sable-pancake.ts.net,100.106.73.20"
"everest,everest.sable-pancake.ts.net,100.73.96.48"
"archie,archie.sable-pancake.ts.net,100.113.139.93"
"steamdeck,steamdeck.sable-pancake.ts.net,100.85.48.85"
"surfacego,surfacego.sable-pancake.ts.net,100.96.92.13"
];
# If this isn't set a cname that targets a host might return the wrong ip
localise-queries = true;
## IPv6 is not a thing in Spain so I'm guaranteed to not use it
filter-AAAA = true;
domain = "sable-pancake.ts.net";
domain-needed = true;
};
};
# Dnsmasq conflicts with the resolved dns stub listener
services.resolved.extraConfig = ''
[Resolve]
DNSStubListener=no
'';
}
Reference in a new issue View git blame Copy permalink