add certs. fix acme challenge. add jwk provisioner
All checks were successful
Flake check / flake-check (pull_request) Successful in 20s
All checks were successful
Flake check / flake-check (pull_request) Successful in 20s
This commit is contained in:
parent
b9e7615ff5
commit
7a65bdbf37
12 changed files with 125 additions and 50 deletions
32
hosts/sid/services/coredns.nix
Normal file
32
hosts/sid/services/coredns.nix
Normal file
|
|
@ -0,0 +1,32 @@
|
|||
{ constants, ... }:
|
||||
|
||||
{
|
||||
services.resolved.enable = false;
|
||||
networking.resolvconf.enable = false;
|
||||
|
||||
networking.nameservers = [ constants.hosts.sid.ip ];
|
||||
|
||||
services.coredns = {
|
||||
enable = true;
|
||||
config = with constants; ''
|
||||
.:53 {
|
||||
bind 127.0.0.1 ${hosts.sid.ip}
|
||||
hosts {
|
||||
${hosts.sid.ip} ${ca-fqdn}
|
||||
|
||||
${hosts.rx4.ip} ${services.vaultwarden.fqdn}
|
||||
${hosts.rx4.ip} ${services.webdav.fqdn}
|
||||
${hosts.rx4.ip} rx4.tail
|
||||
${hosts.sid.ip} ${services.netdata.fqdn}
|
||||
${hosts.sid.ip} sid.tail
|
||||
${hosts.vde.ip} vde.tail
|
||||
fallthrough
|
||||
}
|
||||
forward . 1.1.1.1
|
||||
cache
|
||||
log
|
||||
errors
|
||||
}
|
||||
'';
|
||||
};
|
||||
}
|
||||
Loading…
Add table
Add a link
Reference in a new issue