NixOS/system/modules/networking.nix

{ config, pkgs, ... }:
{
  networking.networkmanager.enable = true;
  networking.extraHosts = ''
    192.168.50.217 gitlab.bareksa.com
    192.168.50.205 apicurio.prod.bareksa.local
    192.168.3.50 kafka.dev.bareksa.local
    192.168.3.109 redpanda.dev.bareksa.local kafka-console.dev.bareksa.local
    192.168.50.102 kafka1.prod.bareksa.local
    192.168.50.103 kafka2.prod.bareksa.local
    192.168.50.104 kafka3.prod.bareksa.local
  '';
  networking.firewall =
    let
      cfg = config.profile.networking.firewall;
    in
    {
      enable = cfg.enable;
      allowedTCPPorts = cfg.allowedTCPPorts;
      allowedUDPPorts = [ 53 ];
    };

  services.resolved = {
    enable = true;
  };

  environment.etc."systemd/resolved.conf.d/10-bareksa.conf".source = (pkgs.formats.ini { }).generate "10-bareksa.conf" {
    Resolve = {
      # This dns server is only available when VPN is connected.
      DNS = "192.168.3.215";
      Domains = "~bareksa.local";
    };
  };
}
bareksa: fix DNS resolution for bareksa.local domain when openvpn is connected 2024-08-07 16:30:45 +07:00			`{ config, pkgs, ... }:`
Exposes repository to public 2024-06-12 09:54:11 +07:00			`{`
			`networking.networkmanager.enable = true;`
			`networking.extraHosts = ''`
			`192.168.50.217 gitlab.bareksa.com`
bareksa: domain changed from tools.bareksa.local -> apicurio.prod.bareksa.local 2024-07-30 16:07:55 +07:00			`192.168.50.205 apicurio.prod.bareksa.local`
bareksa: added more hosts 2024-07-26 19:50:08 +07:00			`192.168.3.50 kafka.dev.bareksa.local`
			`192.168.3.109 redpanda.dev.bareksa.local kafka-console.dev.bareksa.local`
bareksa: added kafka prod ip 2024-08-27 15:24:20 +07:00			`192.168.50.102 kafka1.prod.bareksa.local`
			`192.168.50.103 kafka2.prod.bareksa.local`
			`192.168.50.104 kafka3.prod.bareksa.local`
Exposes repository to public 2024-06-12 09:54:11 +07:00			`'';`
homeserver: added firewall and podman 2024-06-12 20:25:30 +07:00			`networking.firewall =`
			`let`
			`cfg = config.profile.networking.firewall;`
			`in`
			`{`
pihole: added missing DHCP_ACTIVE option 2024-06-17 01:06:31 +07:00			`enable = cfg.enable;`
homeserver: added firewall and podman 2024-06-12 20:25:30 +07:00			`allowedTCPPorts = cfg.allowedTCPPorts;`
pihole: enabled and combined with stubby 2024-06-17 01:06:03 +07:00			`allowedUDPPorts = [ 53 ];`
homeserver: added firewall and podman 2024-06-12 20:25:30 +07:00			`};`
bareksa: fix DNS resolution for bareksa.local domain when openvpn is connected 2024-08-07 16:30:45 +07:00
			`services.resolved = {`
			`enable = true;`
			`};`

			`environment.etc."systemd/resolved.conf.d/10-bareksa.conf".source = (pkgs.formats.ini { }).generate "10-bareksa.conf" {`
			`Resolve = {`
			`# This dns server is only available when VPN is connected.`
			`DNS = "192.168.3.215";`
			`Domains = "~bareksa.local";`
			`};`
			`};`
Exposes repository to public 2024-06-12 09:54:11 +07:00			`}`