feat: move to own dns

2026-02-20 09:04:42 +04:00 · 2026-02-17 19:56:50 +09:00 · 2026-02-17 19:56:50 +09:00 · eaccf45596
commit eaccf45596
parent 96e942d8ac
15 changed files with 138 additions and 202 deletions
--- a/nix/server/firewall.nix
+++ b/nix/server/firewall.nix
@ -0,0 +1,12 @@
+{ ... }:
+let
+	dnsPort = 53;
+	httpPort = 80;
+	httpsPort = 443;
+	dnsOverTlsPort = 853;
+in {
+	networking.firewall = {
+		allowedTCPPorts = [ dnsPort httpPort httpsPort dnsOverTlsPort ];
+		allowedUDPPorts = [ dnsPort ];
+	};
+}