gensokyo-zone/infrastructure
1
0
Fork 0
mirror of https://github.com/gensokyo-zone/infrastructure.git synced 2026-02-09 12:29:19 -08:00
Code Issues Projects Releases Packages Wiki Activity Actions

WIP: services/knot

Browse source
This commit is contained in:
kat witch 2021-08-30 01:50:05 +01:00
parent 7b3078dc27
commit 8a46d7a529
No known key found for this signature in database
GPG key ID: 1B477797DCA5EC72
5 changed files with 69 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

28
config/services/knot/default.nix Normal file
View file

@ -0,0 +1,28 @@
{ config, tf, pkgs, ... }:
{
kw.secrets = [ "knot-dnsupdate" ];
network.firewall.public = {
tcp.ports = [ 53 ];
udp.ports = [ 53 ];
};
secrets.files.knot-dnsupdate = {
text = "${tf.variables.knot-dnsupdate.ref}";
owner = "knot";
group = "knot";
};
/* environment.etc."katdns/zones/kittywit.ch.zone".text = let
dns = pkgs.dns;
in dns.lib.toString "kittywit.ch." (import ./kittywit.ch.nix {inherit dns; }); */
services.knot = {
enable = true;
extraConfig = builtins.readFile ./knot.yaml;
keyFiles = [
config.secrets.files.knot-dnsupdate.path
];
};
}

16
config/services/knot/kittywit.ch.nix Normal file
View file

@ -0,0 +1,16 @@
{ dns }:
with dns.lib.combinators;
{
SOA = {
nameServer = "ns1";
adminEmail = "kat@kittywit.ch";
serial = 0;
};
NS = [
"ns1.kittywit.ch."
"ns2.kittywit.ch."
];
}

22
config/services/knot/knot.yaml Normal file
View file

@ -0,0 +1,22 @@
server:
listen: 0.0.0.0@53
listen: ::@53
acl:
- id: update_acl
key: dnsupdate
address: 0.0.0.0/0
address: ::/0
action: update
zone:
- domain: kittywit.ch
semantic-checks: on
storage: /etc/katdns/zones/
file: kittywit.ch.zone
dnssec-signing: on
acl: update_acl
log:
- target: syslog
any: info

6
nix/sources.json
View file

@ -89,10 +89,10 @@
"homepage": null,
"owner": "kittywitch",
"repo": "nixexprs",
"rev": "61d795bc2b8a6afb1c55c7348fab87a2d333c2ce",
"sha256": "0nwj244yzlljskk20rpnl3lzn0ii85vh60ri4id9gfm4pd18mcjc",
"rev": "a1ef2f8f807205d39c113617670f843690253b43",
"sha256": "14pg1vl4ys7zbhmiy4l99fngmj1z9csrm2vap375vyjns837q9kg",
"type": "tarball",
"url": "https://github.com/kittywitch/nixexprs/archive/61d795bc2b8a6afb1c55c7348fab87a2d333c2ce.tar.gz",
"url": "https://github.com/kittywitch/nixexprs/archive/a1ef2f8f807205d39c113617670f843690253b43.tar.gz",
"url_template": "https://github.com/<owner>/<repo>/archive/<rev>.tar.gz"
},
"niv": {

BIN
overlays/katpkgs/personal/host-splash-site/splash.jpg
View file

Binary file not shown.
Side by side

Before

Width:  |  Height:  |  Size: 103 KiB