2024-08-07 16:30:45 +07:00
|
|
|
{ config, pkgs, ... }:
|
2024-06-12 09:54:11 +07:00
|
|
|
{
|
|
|
|
|
networking.networkmanager.enable = true;
|
|
|
|
|
networking.extraHosts = ''
|
|
|
|
|
192.168.50.217 gitlab.bareksa.com
|
2024-07-30 16:07:55 +07:00
|
|
|
192.168.50.205 apicurio.prod.bareksa.local
|
2024-07-26 19:50:08 +07:00
|
|
|
192.168.3.50 kafka.dev.bareksa.local
|
|
|
|
|
192.168.3.109 redpanda.dev.bareksa.local kafka-console.dev.bareksa.local
|
2024-06-12 09:54:11 +07:00
|
|
|
'';
|
2024-06-12 20:25:30 +07:00
|
|
|
networking.firewall =
|
|
|
|
|
let
|
|
|
|
|
cfg = config.profile.networking.firewall;
|
|
|
|
|
in
|
|
|
|
|
{
|
2024-06-17 01:06:31 +07:00
|
|
|
enable = cfg.enable;
|
2024-06-12 20:25:30 +07:00
|
|
|
allowedTCPPorts = cfg.allowedTCPPorts;
|
2024-06-17 01:06:03 +07:00
|
|
|
allowedUDPPorts = [ 53 ];
|
2024-06-12 20:25:30 +07:00
|
|
|
};
|
2024-08-07 16:30:45 +07:00
|
|
|
|
|
|
|
|
services.resolved = {
|
|
|
|
|
enable = true;
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
environment.etc."systemd/resolved.conf.d/10-bareksa.conf".source = (pkgs.formats.ini { }).generate "10-bareksa.conf" {
|
|
|
|
|
Resolve = {
|
|
|
|
|
# This dns server is only available when VPN is connected.
|
|
|
|
|
DNS = "192.168.3.215";
|
|
|
|
|
Domains = "~bareksa.local";
|
|
|
|
|
};
|
|
|
|
|
};
|
2024-06-12 09:54:11 +07:00
|
|
|
}
|
