2023-08-23 10:36:32 +03:00
|
|
|
{ pkgs, lib, ... }:
|
2023-07-28 15:39:50 +03:00
|
|
|
|
|
|
|
|
{
|
2023-08-23 10:36:32 +03:00
|
|
|
networking.firewall.allowPing = true;
|
2023-08-24 11:06:09 +03:00
|
|
|
|
2023-08-23 10:36:32 +03:00
|
|
|
networking.useNetworkd = lib.mkDefault true;
|
|
|
|
|
systemd.network.wait-online.enable = lib.mkDefault false;
|
|
|
|
|
|
|
|
|
|
# Use systemd-resolved for DoT support.
|
|
|
|
|
services.resolved = {
|
|
|
|
|
enable = true;
|
|
|
|
|
dnssec = "false";
|
|
|
|
|
extraConfig = ''
|
|
|
|
|
DNSOverTLS=yes
|
|
|
|
|
'';
|
2023-07-28 15:39:50 +03:00
|
|
|
};
|
|
|
|
|
|
2023-08-23 10:36:32 +03:00
|
|
|
# Used by systemd-resolved, not directly by resolv.conf.
|
|
|
|
|
networking.nameservers = [
|
|
|
|
|
"8.8.8.8#dns.google"
|
|
|
|
|
"1.0.0.1#cloudflare-dns.com"
|
|
|
|
|
];
|
2023-07-28 15:39:50 +03:00
|
|
|
|
2023-07-30 16:47:22 +03:00
|
|
|
networking.enableIPv6 = true;
|
|
|
|
|
|
|
|
|
|
services.avahi = {
|
|
|
|
|
enable = true;
|
|
|
|
|
nssmdns = true;
|
2023-07-30 16:59:19 +03:00
|
|
|
publish = {
|
|
|
|
|
enable = true;
|
|
|
|
|
addresses = true;
|
|
|
|
|
domain = true;
|
|
|
|
|
hinfo = true;
|
|
|
|
|
userServices = true;
|
|
|
|
|
workstation = true;
|
|
|
|
|
};
|
2023-07-30 16:47:22 +03:00
|
|
|
};
|
|
|
|
|
|
2023-07-28 15:39:50 +03:00
|
|
|
services.timesyncd.enable = true;
|
|
|
|
|
networking.timeServers = [ "ntp1.vniiftri.ru" "0.ru.pool.ntp.org" "0.pool.ntp.org" ];
|
2023-08-23 09:38:48 +03:00
|
|
|
|
|
|
|
|
# Useful tools
|
2023-08-19 11:06:28 +03:00
|
|
|
boot.kernelModules = [ "af_packet" ];
|
|
|
|
|
environment.systemPackages = with pkgs; [ mtr tcpdump traceroute ];
|
2023-07-30 16:47:22 +03:00
|
|
|
}
|
