max/config
1
1
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity Actions

modules/networking-client: use opportunistic DoT

Browse source
This commit is contained in:
Max Headroom 2023-05-01 18:27:32 +02:00
parent 1e5d6a63d5
commit 2009ed5472
1 changed files with 11 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
modules/networking-client/default.nix
View file

@ -1,3 +1,4 @@
{ config, ... }:
{ {
networking.useDHCP = false; networking.useDHCP = false;
@ -13,10 +14,18 @@
}; };
services.resolved = { services.resolved = {
enable = true; enable = true;
fallbackDns = [ "10.1.0.1" ]; fallbackDns = [
"95.216.8.12#securedns.privatevoid.net"
"152.67.73.164#securedns.privatevoid.net"
"10.1.0.1"
];
llmnr = "true"; llmnr = "true";
dnssec = "false"; dnssec = "false";
extraConfig = "Cache=no-negative"; extraConfig = ''
Cache=no-negative
DNSOverTLS=opportunistic
DNS=${builtins.concatStringsSep " " config.services.resolved.fallbackDns}
'';
}; };
networking.firewall = let networking.firewall = let
ports = [ ports = [