RGBCube/ncc
1
Fork 0
mirror of https://github.com/RGBCube/ncc synced 2025-07-30 11:37:44 +00:00
Code Issues Activity

Use NextDNS and always use DNSSEC and DoT

Browse source
This commit is contained in:
RGBCube 2024-04-20 13:54:25 +03:00
parent 7459ee2ce1
commit e367cfdd22
No known key found for this signature in database
1 changed files with 17 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

20
modules/resolved.nix
View file

@ -1,14 +1,28 @@
{ self, lib, ... }: with lib;
{ lib, ... }: with lib;
systemConfiguration {
services.resolved = enabled {
domains = [ self.cube.networking.domain ];
dnssec = "true";
dnsovertls = "true";
extraConfig = ''
DNS=45.90.28.0#7f2bf8.dns.nextdns.io
DNS=2a07:a8c0::#7f2bf8.dns.nextdns.io
DNS=45.90.30.0#7f2bf8.dns.nextdns.io
DNS=2a07:a8c1::#7f2bf8.dns.nextdns.io
'';
dnsovertls = "opportunistic";
fallbackDns = [
"1.1.1.1#one.one.one.one"
"2606:4700:4700::1111#one.one.one.one"
"1.0.0.1#one.one.one.one"
"2606:4700:4700::1001#one.one.one.one"
"8.8.8.8#dns.google"
"2001:4860:4860::8888#dns.google"
"8.8.4.4#dns.google"
"2001:4860:4860::8844#dns.google"
];
};