foodogsquared/nixos-config
1
0
Fork 0
mirror of https://github.com/foo-dogsquared/nixos-config.git synced 2025-01-31 10:58:02 +00:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

hosts/plover: update Bind server config

Browse Source
This commit is contained in:
Gabriel Arazas 2023-06-29 09:44:55 +08:00
parent c9440205cf
commit a8aef35c5c
No known key found for this signature in database
GPG Key ID: ADE0C41DAB221FCC
1 changed files with 16 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

30
hosts/plover/modules/services/bind.nix
View File

@ -108,13 +108,17 @@ in
include "${config.sops.secrets."plover/dns/${domain}/rfc2136-key".path}"; include "${config.sops.secrets."plover/dns/${domain}/rfc2136-key".path}";
acl trusted { ${lib.concatStringsSep "; " internalsACL}; localhost; }; acl trusted { ${lib.concatStringsSep "; " internalsACL}; localhost; };
view external { view internal {
match-clients { any; }; match-clients { trusted; };
forwarders { };
empty-zones-enable yes;
allow-query { any; }; allow-query { any; };
allow-recursion { none; }; allow-recursion { any; };
forwarders { 127.0.0.53 port 53; };
zone "${fqdn}" {
type primary;
file "${zoneFile fqdn}";
};
zone "${domain}" { zone "${domain}" {
type primary; type primary;
@ -127,18 +131,16 @@ in
}; };
}; };
view internal { view external {
match-clients { trusted; }; match-clients { any; };
allow-recursion { any; };
forwarders { 127.0.0.53 port 53; };
zone "${fqdn}" { forwarders { };
type primary; empty-zones-enable yes;
file "${zoneFile fqdn}"; allow-query { any; };
}; allow-recursion { none; };
zone "${domain}" { zone "${domain}" {
in-view external; in-view internal;
}; };
}; };
''; '';