aboutsummaryrefslogtreecommitdiff
path: root/modules/nixos
diff options
context:
space:
mode:
authorLeander Scherer <leander@schererleander.de>2026-01-18 19:17:26 +0100
committerLeander Scherer <leander@schererleander.de>2026-01-18 19:17:26 +0100
commit28a0ecccf54a2da4a4ec637d76f6b39259914cb6 (patch)
tree859f34d06511bc2fd9f038ec0d83f968917f4ff4 /modules/nixos
parentde78c9d00fa8753dbbdfef9bb20b98457b29ca0e (diff)
fix(dns): migrate resolved config to new settings
Diffstat (limited to 'modules/nixos')
-rw-r--r--modules/nixos/dns/default.nix41
1 files changed, 22 insertions, 19 deletions
diff --git a/modules/nixos/dns/default.nix b/modules/nixos/dns/default.nix
index 0b8cf90..ac80e5c 100644
--- a/modules/nixos/dns/default.nix
+++ b/modules/nixos/dns/default.nix
@@ -21,24 +21,27 @@ in
};
};
- config = mkIf cfg.enable {
- services.resolved = {
- enable = true;
- dnssec = "true";
- dnsovertls = "true";
- domains = [ "~." ];
- extraConfig = ''
- DNSStubListener=yes
- Cache=yes
- '';
+ config = mkIf cfg.enable {
+ services.resolved = {
+ enable = true;
+ settings = {
+ Resolve = {
+ DNS = cfg.servers;
+ FallbackDNS = cfg.fallbackServers;
+ DNSSEC = true;
+ DNSOverTLS = true;
+ Domains = [ "~." ];
+ };
+ };
+ };
+ networking = {
+ nameservers = cfg.servers;
+ networkmanager.dns = lib.mkDefault "systemd-resolved";
+ };
+ systemd.services.systemd-resolved.environment = {
+ DNS = concatStringsSep " " cfg.servers;
+ FallbackDNS = concatStringsSep " " cfg.fallbackServers;
+ };
};
- networking = {
- nameservers = cfg.servers;
- networkmanager.dns = lib.mkDefault "systemd-resolved";
- };
- systemd.services.systemd-resolved.environment = {
- DNS = concatStringsSep " " cfg.servers;
- FallbackDNS = concatStringsSep " " cfg.fallbackServers;
- };
- };
+
}
generated by cgit v1.3.1 (git 2.54.0) at 2026-05-30 18:00:58 +0000