27 lines
794 B
Nix
27 lines
794 B
Nix
{lib, ...}: {
|
|
networking = {
|
|
# Use dns.caspervk.net IPv6 address ::2 for uncensored DNS
|
|
nameservers = lib.mkForce [
|
|
"2a01:4f8:1c0c:70d1::2#dns.caspervk.net"
|
|
];
|
|
};
|
|
|
|
# The NixOS firewall enables stateful connection tracking by default, which
|
|
# can be bad for performance.
|
|
# https://github.com/NixOS/nixpkgs/blob/2e88dbad29664f78b4c7f89f9b54d2dd2faef8e6/nixos/modules/services/networking/firewall-iptables.nix#L139
|
|
networking.firewall.enable = false;
|
|
|
|
systemd.network = {
|
|
networks."10-lan" = {
|
|
matchConfig.Name = "enp0s18";
|
|
address = [
|
|
"185.231.102.51/24"
|
|
"2a0c:5700:3133:650:b0ea:eeff:fedb:1f7b/64"
|
|
];
|
|
routes = [
|
|
{Gateway = "185.231.102.1";}
|
|
{Gateway = "fe80::200:5eff:fe00:20c";}
|
|
];
|
|
};
|
|
};
|
|
}
|