define system config for dns resolver

2025-03-04 22:50:57 +01:00 · 2025-03-04 22:50:57 +01:00 · 78a1b6daa7
commit 78a1b6daa7
parent f4ff592efd
4 changed files with 62 additions and 0 deletions
--- a/systems/resolv-dns.noc.eh22.intern/system.nix
+++ b/systems/resolv-dns.noc.eh22.intern/system.nix
@ -0,0 +1,36 @@
+{
+  pkgs,
+  lib,
+  ...
+}:
+{
+  imports = [ ];
+
+  # configure static IP address
+  networking.useDHCP = false;
+  systemd.network = {
+    enable = true;
+    networks = {
+      "10-mgmtNet" = {
+        matchConfig.MACAddress = "BC:24:11:61:E3:D9";
+        address = [ "10.20.25.5/24" ];
+        gateway = [ "10.20.25.2" ];
+      };
+    };
+  };
+
+  # enable knot resolv server
+  # ref: https://search.nüschtos.de/?query=services.kresd
+  #      https://www.knot-resolver.cz/documentation/stable/
+  services.kresd = {
+    enable = true;
+    instances = 4;
+    listenPlain = [ "53" ];
+    extraConfig = builtins.readFile ./kresd-config.lua;
+  };
+
+  # DO NOT CHANGE
+  # this defines the first version of NixOS that was installed on the machine so that programs with non-migratable data files are kept compatible
+  home-manager.users.noc.home.stateVersion = "24.11";
+  system.stateVersion = "24.11";
+}