max/config
1
1
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity Actions

modules/networking-client: use opportunistic DoT

Browse source
This commit is contained in:
Max Headroom 2023-05-01 18:27:32 +02:00
parent 1e5d6a63d5
commit 2009ed5472
1 changed files with 11 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

13
modules/networking-client/default.nix
View file

@ -1,3 +1,4 @@
{ config, ... }:
{
networking.useDHCP = false;
@ -13,10 +14,18 @@
};
services.resolved = {
enable = true;
fallbackDns = [ "10.1.0.1" ];
fallbackDns = [
"95.216.8.12#securedns.privatevoid.net"
"152.67.73.164#securedns.privatevoid.net"
"10.1.0.1"
];
llmnr = "true";
dnssec = "false";
extraConfig = "Cache=no-negative";
extraConfig = ''
Cache=no-negative
DNSOverTLS=opportunistic
DNS=${builtins.concatStringsSep " " config.services.resolved.fallbackDns}
'';
};
networking.firewall = let
ports = [