63 lines
1.6 KiB
Nix
63 lines
1.6 KiB
Nix
{
|
|
services = {
|
|
blocky = {
|
|
enable = true;
|
|
settings = {
|
|
ports = {
|
|
dns = 53;
|
|
http = 4000;
|
|
};
|
|
upstreams = {
|
|
groups = {
|
|
default = [ "127.0.0.1:5335" ];
|
|
"100.64.0.0/10" = [ "127.0.0.1:5454" ];
|
|
"fd7a:115c:a1e0::/96" = [ "127.0.0.1:5454" ];
|
|
};
|
|
};
|
|
|
|
blocking = {
|
|
blackLists = {
|
|
ads = [
|
|
"https://big.oisd.nl/domainswild"
|
|
"https://raw.githubusercontent.com/StevenBlack/hosts/master/alternates/fakenews/hosts"
|
|
];
|
|
};
|
|
|
|
clientGroupsBlock = {
|
|
default = [ "ads" ];
|
|
};
|
|
};
|
|
|
|
customDNS = {
|
|
mapping = {
|
|
"ci.datarift.nl" = "10.0.0.251";
|
|
"home.datarift.nl" = "10.0.0.251";
|
|
"frigate.datarift.nl" = "10.0.0.251";
|
|
"git.datarift.nl" = "10.0.0.203";
|
|
"loki.datarift.nl" = "10.0.0.4";
|
|
"minio.datarift.nl" = "10.0.0.251";
|
|
"minio-admin.datarift.nl" = "10.0.0.251";
|
|
"mqtt.datarift.nl" = "10.0.0.254";
|
|
"nix-cache.datarift.nl" = "10.0.0.209";
|
|
"saga.datarift.nl" = "10.0.0.251";
|
|
"track.datarift.nl" = "10.0.0.254";
|
|
"vidz.datarift.nl" = "10.0.0.211";
|
|
|
|
# Horus
|
|
"vaultserver.horus.nu" = "192.168.4.32";
|
|
};
|
|
};
|
|
|
|
prometheus = {
|
|
enable = true;
|
|
};
|
|
|
|
queryLog = {
|
|
type = "csv";
|
|
target = "/var/lib/blocky/querylog";
|
|
logRetentionDays = 7;
|
|
};
|
|
};
|
|
};
|
|
};
|
|
}
|