Skynet/nixos
6
1
Fork 0
Code Issues 43 Pull requests 1 Projects Releases Packages Wiki Activity Actions

acme: config required for the dns side of things

Browse source
This commit is contained in:
silver 2023-04-20 18:50:00 +01:00
parent 1693a9e5fe
commit e5040278ba
1 changed files with 6 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
applications/dns.nix
View file

@ -59,6 +59,7 @@ in {
}; };
}; };
age.secrets.dns_dnskeys.file = ../secrets/dns_dnskeys.conf.age;
config = lib.mkIf cfg.enable { config = lib.mkIf cfg.enable {
services.bind = { services.bind = {
@ -66,11 +67,10 @@ in {
ipv4Only = true; ipv4Only = true;
#forwarders = [ # need to take a look at https://nixos.org/manual/nixos/unstable/#module-security-acme-config-dns
# these were in old config file extraConfig = ''
#"193.1.100.130" include "/run/agenix/dns_dnskeys";
#"193.1.100.131" '';
#];
zones = { zones = {
/* /*
@ -88,7 +88,7 @@ in {
*/ */
"skynet.ie" = { "skynet.ie" = {
extraConfig = ""; extraConfig = "allow-update { key rfc2136key.skynet.ie.; };";
# really wish teh nixos config didnt use master/slave # really wish teh nixos config didnt use master/slave
master = true; master = true;
slaves = [ ]; slaves = [ ];