Henry-Hiles/nixos
1
1
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

set up unbound dns for server

Browse source
This commit is contained in:
Henry Hiles 2026-05-27 19:38:45 -04:00
commit 6864cb27cd
Signed by: Henry-Hiles
SSH key fingerprint: SHA256:VKQUdS31Q90KvX7EkKMHMBpUspcmItAh86a+v7PGiIs
3 changed files with 15 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

5
modules/common/dns.nix → modules/graphical/dns.nix
View file

@ -1,5 +1,5 @@
{ lib, ... }:
{ {
networking.resolvconf.useLocalResolver = true;
services.dnsproxy = { services.dnsproxy = {
enable = true; enable = true;
flags = [ flags = [
@ -14,7 +14,4 @@
bootstrap = fallback; bootstrap = fallback;
}; };
}; };
environment.etc."resolv.conf".text = lib.mkForce "nameserver 127.0.0.1";
networking.resolvconf.enable = false;
} }

2
modules/server/continuwuity.nix
View file

@ -59,6 +59,8 @@
url_preview_max_spider_size = 2097152; url_preview_max_spider_size = 2097152;
max_request_size = 524288000; max_request_size = 524288000;
db_cache_capacity_mb = 2056; db_cache_capacity_mb = 2056;
query_over_tcp_only = true;
dns_cache_entries = 0; dns_cache_entries = 0;
allow_public_room_directory_over_federation = true; allow_public_room_directory_over_federation = true;

12
modules/server/dns.nix Normal file
View file

@ -0,0 +1,12 @@
{
services.unbound = {
enable = true;
settings = {
server = {
rrset-cache-size = "64M";
msg-cache-size = "64M";
discard-timeout = 4800;
};
};
};
}