diff options
| author | quentin@aristote.fr <quentin@aristote.fr> | 2023-05-21 18:59:28 +0200 |
|---|---|---|
| committer | quentin@aristote.fr <quentin@aristote.fr> | 2023-05-21 19:06:45 +0200 |
| commit | f2aa6e6abf66f0e946c8a1f46ae675360ce24654 (patch) | |
| tree | 67a1134a4d39756876e33269f2182c87cf6bef08 /config | |
| parent | 3bb82c2ac68fbb4ef04b0a350c1a072b019970cc (diff) | |
config: networking: dns: add oisd blocklist
Diffstat (limited to 'config')
| -rw-r--r-- | config/networking/services/dns.nix | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/config/networking/services/dns.nix b/config/networking/services/dns.nix index 5c06eeb..cce2f17 100644 --- a/config/networking/services/dns.nix +++ b/config/networking/services/dns.nix @@ -6,6 +6,7 @@ in { enable = true; settings = { server = { + module-config = ''"respip validator iterator"''; interface = [ "127.0.0.1" "${nets.wan.subnet}.1" "${nets.iot.subnet}.1" ]; access-control = [ @@ -15,6 +16,9 @@ in { "${nets.iot.subnet}.0/24 allow" ]; }; + rpz = { + name = "rpz.oisd.nl"; + }; }; }; } |