fix: use networkd on servers

2024-08-17 18:33:34 +02:00 · 2024-08-17 18:33:34 +02:00 · 7399f8bbc0
commit 7399f8bbc0
parent d0c298b4af
3 changed files with 20 additions and 20 deletions
--- a/configs/common.nix
+++ b/configs/common.nix
@ -75,9 +75,9 @@ in {
  i18n.defaultLocale = "en_US.UTF-8";
-  networking.networkmanager = {
+  networking = {
-    enable = true;
+    useNetworkd = lib.mkDefault true;
-    dns = lib.mkDefault "systemd-resolved";
+    nameservers = ["1.1.1.1" "1.0.0.1"];
  };
  nix = {
@ -142,12 +142,9 @@ in {
    };
    resolved = {
-      enable = lib.mkDefault true;
+      enable = true;
      dnssec = "allow-downgrade";
      dnsovertls = "true";
      extraConfig = ''
        DNS=1.1.1.1 1.0.0.1
      '';
    };
    tailscale = {
--- a/configs/desktop.nix
+++ b/configs/desktop.nix
@ -111,6 +111,14 @@
    LC_TIME = "fr_FR.UTF-8";
  };
  networking = {
    useNetworkd = false;
    networkmanager = {
      enable = true;
      dns = "systemd-resolved";
    };
  };
  programs = {
    firefox.enable = true;
    virt-manager.enable = true;
--- a/systems/vesuvio/default.nix
+++ b/systems/vesuvio/default.nix
@ -14,7 +14,6 @@ in {
  environment.systemPackages = with pkgs; [dig traceroute];
  services = {
    resolved.enable = false;
    openssh.ports = [4269];
    frp = {
@ -32,10 +31,7 @@ in {
  systemd.services.frp.serviceConfig.EnvironmentFile = secrets.get "frpToken";
-  networking = {
+  networking.firewall = {
    networkmanager.dns = "default";
    firewall = {
    allowedTCPPorts = [22]; # forgejo-ssh
    allowedTCPPortRanges = [
      {
@ -44,5 +40,4 @@ in {
      }
    ];
  };
  };
 }