682de76b1e
This resolves the issue of the daemon not starting because the nix store is not yet mounted Signed-off-by: Wigger Boelens <me@wigger.email>
97 lines
2.6 KiB
Nix
97 lines
2.6 KiB
Nix
{ config, lib, pkgs, ... }:
|
|
|
|
with lib;
|
|
|
|
let
|
|
cfg = config.services.dnsmasq;
|
|
mapA = f: attrs: with builtins; attrValues (mapAttrs f attrs);
|
|
in
|
|
|
|
{
|
|
options = {
|
|
services.dnsmasq.enable = mkOption {
|
|
type = types.bool;
|
|
default = false;
|
|
description = "Whether to enable DNSmasq.";
|
|
};
|
|
|
|
services.dnsmasq.package = mkOption {
|
|
type = types.path;
|
|
default = pkgs.dnsmasq;
|
|
defaultText = "pkgs.dnsmasq";
|
|
description = "This option specifies the dnsmasq package to use.";
|
|
};
|
|
|
|
services.dnsmasq.bind = mkOption {
|
|
type = types.str;
|
|
default = "127.0.0.1";
|
|
description = "This option specifies the interface on which DNSmasq will listen.";
|
|
};
|
|
|
|
services.dnsmasq.port = mkOption {
|
|
type = types.int;
|
|
default = 53;
|
|
description = "This option specifies port on which DNSmasq will listen.";
|
|
};
|
|
|
|
services.dnsmasq.addresses = mkOption {
|
|
type = types.attrs;
|
|
default = {};
|
|
description = "List of domains that will be redirected by the DNSmasq.";
|
|
example = literalExpression ''
|
|
{ localhost = "127.0.0.1"; }
|
|
'';
|
|
};
|
|
|
|
services.dnsmasq.servers = mkOption {
|
|
type = types.listOf types.str;
|
|
default = [];
|
|
description = ''
|
|
List of upstream DNS servers to forward queries to.
|
|
If empty, dnsmasq will use the servers from /etc/resolv.conf.
|
|
Each entry can be:
|
|
- An IP address (e.g., "1.2.3.4")
|
|
- A domain-specific server (e.g., "/example.com/1.2.3.4")
|
|
- A server with port (e.g., "1.2.3.4#5353")
|
|
See dnsmasq(8) man page for --server option for full syntax.
|
|
'';
|
|
example = literalExpression ''
|
|
[
|
|
"8.8.8.8"
|
|
"8.8.4.4"
|
|
"/internal.example.com/192.168.1.1"
|
|
]
|
|
'';
|
|
};
|
|
};
|
|
|
|
config = mkIf cfg.enable {
|
|
environment.systemPackages = [ cfg.package ];
|
|
|
|
launchd.daemons.dnsmasq = {
|
|
command = let
|
|
args = [
|
|
"--listen-address=${cfg.bind}"
|
|
"--port=${toString cfg.port}"
|
|
"--keep-in-foreground"
|
|
] ++ (mapA (domain: addr: "--address=/${domain}/${addr}") cfg.addresses)
|
|
++ (map (server: "--server=${server}") cfg.servers);
|
|
in
|
|
"${cfg.package}/bin/dnsmasq ${concatStringsSep " " args}";
|
|
|
|
serviceConfig.KeepAlive = true;
|
|
serviceConfig.RunAtLoad = true;
|
|
};
|
|
|
|
environment.etc = builtins.listToAttrs (builtins.map (domain: {
|
|
name = "resolver/${domain}";
|
|
value = {
|
|
enable = true;
|
|
text = ''
|
|
port ${toString cfg.port}
|
|
nameserver ${cfg.bind}
|
|
'';
|
|
};
|
|
}) (builtins.attrNames cfg.addresses));
|
|
};
|
|
}
|