nix-config/config/basic/net.nix

{
  lib,
  config,
  ...
}:
{
  networking = {
    search = [ "local" ];
    useNetworkd = true;
    dhcpcd.enable = false;
    useDHCP = false;
    # allow mdns port
    firewall.allowedUDPPorts = [ 5353 ];
    renameInterfacesByMac = lib.mkIf (!config.boot.isContainer) (
      lib.mapAttrs (_: v: v.mac) (config.secrets.secrets.local.networking.interfaces or { })
    );
  };
  systemd.network = {
    enable = true;
    wait-online.enable = false;
  };
  systemd.services.NetworkManager-wait-online.enable = false;

  # Do not take down the network for too long when upgrading,
  # This also prevents failures of services that are restarted instead of stopped.
  # It will use `systemctl restart` rather than stopping it with `systemctl stop`
  # followed by a delayed `systemctl start`.
  systemd.services.systemd-networkd.stopIfChanged = false;
  # Services that are only restarted might be not able to resolve when resolved is stopped before
  systemd.services.systemd-resolved.stopIfChanged = false;
  system.nssDatabases.hosts = lib.mkMerge [
    (lib.mkBefore [ "mdns_minimal [NOTFOUND=return]" ])
    (lib.mkAfter [ "mdns" ])
  ];
  services.resolved = {
    enable = true;
    # man I whish dnssec would be viable to use
    dnssec = "false";
    llmnr = "false";
    extraConfig = ''
      Domains=~.
      MulticastDNS=true
    '';
  };

}
feat: mullvad on all computers 2024-10-25 14:45:07 +02:00			`{`
			`lib,`
			`config,`
			`...`
			`}:`
feat(nvim): nixvim config done 2023-11-28 00:40:46 +01:00			`{`
feat: reworked directory structure of host 2023-05-18 06:57:58 +02:00			`networking = {`
feat: vlans 2024-12-16 21:28:08 +01:00			`search = [ "local" ];`
feat: reworked directory structure of host 2023-05-18 06:57:58 +02:00			`useNetworkd = true;`
			`dhcpcd.enable = false;`
feat: nextcloud up and running 2023-12-17 16:34:05 +01:00			`useDHCP = false;`
feat: enabled mdns 2023-09-03 13:26:08 +02:00			`# allow mdns port`
reformat 2024-07-26 22:12:48 +02:00			`firewall.allowedUDPPorts = [ 5353 ];`
feat: acme/ddclient/nextcloud container 2023-12-16 22:41:06 +01:00			`renameInterfacesByMac = lib.mkIf (!config.boot.isContainer) (`
reformat 2024-07-26 22:12:48 +02:00			`lib.mapAttrs (_: v: v.mac) (config.secrets.secrets.local.networking.interfaces or { })`
feat: acme/ddclient/nextcloud container 2023-12-16 22:41:06 +01:00			`);`
feat: reworked directory structure of host 2023-05-18 06:57:58 +02:00			`};`
			`systemd.network = {`
			`enable = true;`
feat: srvOS things 2024-12-04 22:47:40 +01:00			`wait-online.enable = false;`
feat: reworked directory structure of host 2023-05-18 06:57:58 +02:00			`};`
feat: srvOS things 2024-12-04 22:47:40 +01:00			`systemd.services.NetworkManager-wait-online.enable = false;`

			`# Do not take down the network for too long when upgrading,`
			`# This also prevents failures of services that are restarted instead of stopped.`
			# It will use `systemctl restart` rather than stopping it with `systemctl stop`
			# followed by a delayed `systemctl start`.
			`systemd.services.systemd-networkd.stopIfChanged = false;`
			`# Services that are only restarted might be not able to resolve when resolved is stopped before`
			`systemd.services.systemd-resolved.stopIfChanged = false;`
fix: enabled xdg utils to open links in wayland 2023-09-03 13:05:23 +02:00			`system.nssDatabases.hosts = lib.mkMerge [`
reformat 2024-07-26 22:12:48 +02:00			`(lib.mkBefore [ "mdns_minimal [NOTFOUND=return]" ])`
			`(lib.mkAfter [ "mdns" ])`
fix: enabled xdg utils to open links in wayland 2023-09-03 13:05:23 +02:00			`];`
feat: reworked directory structure of host 2023-05-18 06:57:58 +02:00			`services.resolved = {`
			`enable = true;`
chore: systemd update 2023-09-02 20:11:06 +02:00			`# man I whish dnssec would be viable to use`
fix: disable dnssec 2024-05-13 22:54:21 +02:00			`dnssec = "false";`
chore: systemd update 2023-09-02 20:11:06 +02:00			`llmnr = "false";`
			`extraConfig = ''`
			`Domains=~.`
			`MulticastDNS=true`
			`'';`
feat: reworked directory structure of host 2023-05-18 06:57:58 +02:00			`};`
feat: mullvad on all computers 2024-10-25 14:45:07 +02:00
feat: reworked directory structure of host 2023-05-18 06:57:58 +02:00			`}`