summaryrefslogtreecommitdiff
path: root/daeva/configuration.nix
diff options
context:
space:
mode:
authorKenny Ballou <kb@devnulllabs.io>2021-07-23 11:36:49 -0600
committerKenny Ballou <kb@devnulllabs.io>2021-07-23 11:39:30 -0600
commit5a26ebf03cb3a3a2f16b2dc182c65424554870ba (patch)
tree7380a712fa7ebe339916ad7029e3b64e6c16e97e /daeva/configuration.nix
parent1f00d242d279e650edc5309bf0d3874b3534570b (diff)
downloadcfg.nix-master.tar.gz
cfg.nix-master.tar.xz
configure systemd-resolved with DoTHEADmaster
Disable networkmanager from writing `/etc/resolv.conf` and use configured DNS servers with DNS over TLS. Prune down list of nameservers as Level3 and OpenDNS do not currently support DoT. Signed-off-by: Kenny Ballou <kb@devnulllabs.io>
Diffstat (limited to 'daeva/configuration.nix')
-rw-r--r--daeva/configuration.nix5
1 files changed, 3 insertions, 2 deletions
diff --git a/daeva/configuration.nix b/daeva/configuration.nix
index fa0a9b1..f3a8481 100644
--- a/daeva/configuration.nix
+++ b/daeva/configuration.nix
@@ -14,11 +14,12 @@
../secrets.nix
../services/clamav.nix
../services/dbus.nix
- ../services/dnsmasq.nix
+ ../services/resolved.nix
../services/firewall.nix
../services/kde.nix
../services/haveged.nix
../services/logind.nix
+ ../services/networkmanager.nix
../services/podman.nix
../services/printing.nix
../services/sound.nix
@@ -42,7 +43,7 @@
../system/wireshark.nix
../system/yubikey-gpg.nix
../unfree.nix
- ];
+ ];
# Use the GRUB 2 boot loader.
boot.loader.systemd-boot = {