nix-config/hosts/nucnix/kea.nix

{
  lib,
  utils,
  globals,
  ...

}:
let
  inherit (lib)
    net
    flip
    mapAttrsToList
    ;
in
{
  environment.persistence."/persist".directories = [
    {
      directory = "/var/lib/private/kea";
      mode = "0700";
    }
  ];

  services.kea.dhcp4 = {
    enable = true;
    settings = {
      lease-database = {
        name = "/var/lib/kea/dhcp4.leases";
        persist = true;
        type = "memfile";
      };
      valid-lifetime = 86400;
      renew-timer = 3600;
      interfaces-config = {
        interfaces = flip mapAttrsToList globals.net.vlans (x: _: "lan-${x}");
      };
      subnet4 = flip mapAttrsToList globals.net.vlans (
        name:
        {
          id,
          cidrv4,
          internet,
          dns,
          ...
        }:
        rec {
          inherit id;
          interface = "lan-${name}";
          subnet = cidrv4;
          pools = [
            {
              pool = "${net.cidr.host 50 subnet} - ${net.cidr.host (-6) subnet}";
            }
          ];
          option-data =
            lib.optional dns {
              name = "domain-name-servers";
              data = "${net.cidr.host globals.services.adguardhome.ip globals.net.vlans.services.cidrv4}";
            }
            ++ lib.optional internet {
              name = "routers";
              data = "${net.cidr.host 1 subnet}";
            };
          reservations = [
            {
              # homematic
              hw-address = "b8:27:eb:5d:ff:36";
              ip-address = net.cidr.host 30 subnet;
            }
            {
              # testberry
              hw-address = "d8:3a:dd:dc:b6:6a";
              ip-address = net.cidr.host 31 subnet;
            }
            {
              # drucker
              hw-address = "48:9e:bd:5c:31:ac";
              ip-address = net.cidr.host 32 subnet;
            }
            {
              # varta
              hw-address = "00:0c:c6:06:7a:70";
              ip-address = net.cidr.host 20 subnet;
            }
          ];
        }
      );
    };
  };

  systemd.services.kea-dhcp4-server.after = flip mapAttrsToList globals.net.vlans (
    name: _: "sys-subsystem-net-devices-${utils.escapeSystemdPath "lan-${name}"}.device"
  );
}
feat: finish firewall network config feat: kea configuration 2024-12-19 20:25:01 +01:00			`{`
			`lib,`
			`utils,`
feat: dns for vlans 2024-12-21 20:57:16 +01:00			`globals,`
feat: finish firewall network config feat: kea configuration 2024-12-19 20:25:01 +01:00			`...`
feat: dns for vlans 2024-12-21 20:57:16 +01:00
feat: finish firewall network config feat: kea configuration 2024-12-19 20:25:01 +01:00			`}:`
			`let`
			`inherit (lib)`
			`net`
			`flip`
			`mapAttrsToList`
			`;`
			`in`
			`{`
			`environment.persistence."/persist".directories = [`
			`{`
			`directory = "/var/lib/private/kea";`
			`mode = "0700";`
			`}`
			`];`

			`services.kea.dhcp4 = {`
			`enable = true;`
			`settings = {`
			`lease-database = {`
			`name = "/var/lib/kea/dhcp4.leases";`
			`persist = true;`
			`type = "memfile";`
			`};`
			`valid-lifetime = 86400;`
			`renew-timer = 3600;`
			`interfaces-config = {`
fix: switch to internal domains 2024-12-23 17:03:10 +01:00			`interfaces = flip mapAttrsToList globals.net.vlans (x: _: "lan-${x}");`
feat: finish firewall network config feat: kea configuration 2024-12-19 20:25:01 +01:00			`};`
fix: switch to internal domains 2024-12-23 17:03:10 +01:00			`subnet4 = flip mapAttrsToList globals.net.vlans (`
			`name:`
feat: more homeassistant 2025-01-07 21:23:06 +01:00			`{`
			`id,`
			`cidrv4,`
			`internet,`
feat: homeassistant more components 2025-01-09 13:58:51 +01:00			`dns,`
feat: more homeassistant 2025-01-07 21:23:06 +01:00			`...`
			`}:`
fix: switch to internal domains 2024-12-23 17:03:10 +01:00			`rec {`
feat: finish firewall network config feat: kea configuration 2024-12-19 20:25:01 +01:00			`inherit id;`
			`interface = "lan-${name}";`
feat: homeassistant more components 2025-01-09 13:58:51 +01:00			`subnet = cidrv4;`
feat: finish firewall network config feat: kea configuration 2024-12-19 20:25:01 +01:00			`pools = [`
			`{`
			`pool = "${net.cidr.host 50 subnet} - ${net.cidr.host (-6) subnet}";`
			`}`
			`];`
feat: more homeassistant 2025-01-07 21:23:06 +01:00			`option-data =`
feat: homeassistant more components 2025-01-09 13:58:51 +01:00			`lib.optional dns {`
			`name = "domain-name-servers";`
			`data = "${net.cidr.host globals.services.adguardhome.ip globals.net.vlans.services.cidrv4}";`
			`}`
feat: more homeassistant 2025-01-07 21:23:06 +01:00			`++ lib.optional internet {`
feat: finish firewall network config feat: kea configuration 2024-12-19 20:25:01 +01:00			`name = "routers";`
			`data = "${net.cidr.host 1 subnet}";`
feat: more homeassistant 2025-01-07 21:23:06 +01:00			`};`
feat: finish firewall network config feat: kea configuration 2024-12-19 20:25:01 +01:00			`reservations = [`
feat: hostapd vm 2024-12-23 12:42:21 +01:00			`{`
			`# homematic`
			`hw-address = "b8:27:eb:5d:ff:36";`
			`ip-address = net.cidr.host 30 subnet;`
			`}`
			`{`
			`# testberry`
			`hw-address = "d8:3a:dd:dc:b6:6a";`
			`ip-address = net.cidr.host 31 subnet;`
			`}`
fix: switch to internal domains 2024-12-23 17:03:10 +01:00			`{`
			`# drucker`
			`hw-address = "48:9e:bd:5c:31:ac";`
			`ip-address = net.cidr.host 32 subnet;`
			`}`
feat: homeassistant more components 2025-01-09 13:58:51 +01:00			`{`
			`# varta`
			`hw-address = "00:0c:c6:06:7a:70";`
			`ip-address = net.cidr.host 20 subnet;`
			`}`
feat: finish firewall network config feat: kea configuration 2024-12-19 20:25:01 +01:00			`];`
			`}`
			`);`
			`};`
			`};`

fix: switch to internal domains 2024-12-23 17:03:10 +01:00			`systemd.services.kea-dhcp4-server.after = flip mapAttrsToList globals.net.vlans (`
feat: dns for vlans 2024-12-21 20:57:16 +01:00			`name: _: "sys-subsystem-net-devices-${utils.escapeSystemdPath "lan-${name}"}.device"`
			`);`
feat: finish firewall network config feat: kea configuration 2024-12-19 20:25:01 +01:00			`}`