fix: network config for nix-darwin
This commit is contained in:
parent
b55abee6b2
commit
5dd062efce
1 changed files with 52 additions and 45 deletions
|
@ -5,52 +5,59 @@
|
|||
}: let
|
||||
inherit (pkgs.stdenv.hostPlatform) isLinux;
|
||||
in {
|
||||
services = {
|
||||
dnsmasq =
|
||||
services =
|
||||
{
|
||||
dnsmasq =
|
||||
if isLinux
|
||||
then {
|
||||
enable = true;
|
||||
servers = [
|
||||
"::1#53000"
|
||||
"127.0.0.1#53000"
|
||||
];
|
||||
extraConfig = ''
|
||||
# stubby
|
||||
no-resolv
|
||||
proxy-dnssec
|
||||
listen-address=::1,127.0.0.1
|
||||
|
||||
# loopback for development
|
||||
address=/test/127.0.0.1
|
||||
'';
|
||||
}
|
||||
# nix-darwin config
|
||||
else {
|
||||
enable = true;
|
||||
addresses."test" = "127.0.0.1";
|
||||
bind = "127.0.0.1";
|
||||
};
|
||||
}
|
||||
// (
|
||||
if isLinux
|
||||
then {
|
||||
enable = true;
|
||||
servers = [
|
||||
"::1#53000"
|
||||
"127.0.0.1#53000"
|
||||
];
|
||||
extraConfig = ''
|
||||
# stubby
|
||||
no-resolv
|
||||
proxy-dnssec
|
||||
listen-address=::1,127.0.0.1
|
||||
|
||||
# loopback for development
|
||||
address=/test/127.0.0.1
|
||||
'';
|
||||
mullvad-vpn = {
|
||||
enable = true;
|
||||
};
|
||||
stubby = {
|
||||
enable = true;
|
||||
settings = {
|
||||
resolution_type = "GETDNS_RESOLUTION_STUB";
|
||||
listen_addresses = ["127.0.0.1@53000" "0::1@53000"];
|
||||
upstream_recursive_servers = [
|
||||
{
|
||||
address_data = "194.242.2.3";
|
||||
tls_port = 853;
|
||||
tls_auth_name = "adblock.doh.mullvad.net";
|
||||
}
|
||||
{
|
||||
address_data = "2a07:e340::3";
|
||||
tls_port = 853;
|
||||
tls_auth_name = "adblock.doh.mullvad.net";
|
||||
}
|
||||
];
|
||||
};
|
||||
};
|
||||
}
|
||||
# nix-darwin config
|
||||
else {
|
||||
enable = true;
|
||||
addresses."test" = "127.0.0.1";
|
||||
bind = "127.0.0.1";
|
||||
};
|
||||
|
||||
stubby = lib.mkIf isLinux {
|
||||
enable = true;
|
||||
settings = {
|
||||
resolution_type = "GETDNS_RESOLUTION_STUB";
|
||||
listen_addresses = ["127.0.0.1@53000" "0::1@53000"];
|
||||
upstream_recursive_servers = [
|
||||
{
|
||||
address_data = "194.242.2.3";
|
||||
tls_port = 853;
|
||||
tls_auth_name = "adblock.doh.mullvad.net";
|
||||
}
|
||||
{
|
||||
address_data = "2a07:e340::3";
|
||||
tls_port = 853;
|
||||
tls_auth_name = "adblock.doh.mullvad.net";
|
||||
}
|
||||
];
|
||||
};
|
||||
};
|
||||
|
||||
mullvad-vpn.enable = isLinux;
|
||||
};
|
||||
else {}
|
||||
);
|
||||
}
|
||||
|
|
Loading…
Reference in a new issue