2024-03-11 17:23:01 +00:00
|
|
|
{ ... }:
|
|
|
|
{
|
|
|
|
sops.secrets.ns_xfer_key = {
|
|
|
|
path = "/etc/nsd/xfer.key";
|
|
|
|
};
|
|
|
|
|
|
|
|
networking.firewall.allowedTCPPorts = [ 8053 ];
|
|
|
|
networking.firewall.allowedUDPPorts = [ 8053 ];
|
|
|
|
|
2024-03-07 22:14:44 +00:00
|
|
|
services.nsd = {
|
|
|
|
enable = true;
|
|
|
|
port = 8053;
|
2024-03-11 17:23:01 +00:00
|
|
|
ipv6 = false;
|
|
|
|
verbosity = 2;
|
|
|
|
identity = "test.2rjus.net server";
|
|
|
|
interfaces = [ "0.0.0.0" ];
|
|
|
|
|
|
|
|
keys = {
|
|
|
|
"xferkey" = {
|
|
|
|
algorithm = "hmac-sha256";
|
|
|
|
keyFile = "/etc/nsd/xfer.key";
|
|
|
|
};
|
|
|
|
};
|
2024-03-07 22:14:44 +00:00
|
|
|
|
2024-03-08 19:10:50 +00:00
|
|
|
zones = {
|
2024-03-11 17:23:01 +00:00
|
|
|
"test.2rjus.net" = {
|
|
|
|
provideXFR = [ "10.69.13.8 xferkey" ];
|
|
|
|
notify = [ "10.69.13.8@8053 xferkey" ];
|
2024-03-08 19:10:50 +00:00
|
|
|
data = builtins.readFile ./zones-test-2rjus-net.conf;
|
|
|
|
};
|
2024-03-07 22:14:44 +00:00
|
|
|
};
|
|
|
|
};
|
|
|
|
}
|