nixos-config/machines/valkyrie/coredns/default.nix

45 lines
917 B
Nix
Raw Normal View History

{ pkgs, config, ... }:
{
services.coredns = {
enable = true;
package = pkgs.coredns.override {
externalPlugins = [
{
name = "tailscale";
repo = "github.com/damomurf/coredns-tailscale";
2024-04-23 16:32:01 +02:00
version = "750df081a3cc63f325ecfde6c30a974dc0e4bf56";
}
];
2024-04-23 16:32:01 +02:00
vendorHash = "sha256-tuHr5oYmx3HNmsO6ZOO14vORArk8YHZBsodCiydf6k8=";
};
config = ''
datarift.nl:5454 {
bind 127.0.0.1 ::1
tailscale datarift.nl {
authkey {$TS_AUTHKEY}
}
log
errors
}
.:5454 {
bind 127.0.0.1 ::1
forward . 127.0.0.1:5335
log
errors
}
'';
};
systemd.services.coredns = {
environment = {
HOME = "%S/coredns";
};
serviceConfig = {
StateDirectory = "coredns";
EnvironmentFile = [ config.sops.secrets.coredns-env.path ];
};
};
}