mirrors/nix-darwin
mirrors/nix-darwin
1
0
Fork 0
mirror of https://github.com/LnL7/nix-darwin.git synced 2025-03-31 04:04:45 +00:00
Code Activity

Merge 801e0cb2e9 into 53d0f0ed11

Browse source
This commit is contained in:
Alessio Caiazza 2025-03-29 15:35:56 +00:00 committed by GitHub
commit fb048b82f6
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 7 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
modules/services/tailscale.nix
View file

@ -33,7 +33,7 @@ in
1. at least one DNS server is added
2. `Override local DNS` is enabled
As this option sets 100.100.100.100 as your sole DNS server, if the requirements above are not met,
As this option sets 100.100.100.100 and fd7a:115c:a1e0::53 as your sole DNS servers, if the requirements above are not met,
all non-MagicDNS queries WILL fail.
'';
};
@ -41,7 +41,7 @@ in
config = mkIf cfg.enable {
assertions = [{
assertion = !cfg.overrideLocalDns || config.networking.dns == [ "100.100.100.100" ];
assertion = cfg.overrideLocalDns -> (builtins.any (x: x != "100.100.100.100" || x != "fd7a:115c:a1e0::53") config.networking.dns);
message = ''
DNS servers should be configured on the Tailscale control panel when `services.tailscale.overrideLocalDns` is enabled.
@ -61,10 +61,13 @@ in
};
};
networking.dns = mkIf cfg.overrideLocalDns [ "100.100.100.100" ];
networking.dns = mkIf cfg.overrideLocalDns [ "100.100.100.100" "fd7a:115c:a1e0::53" ];
# Ensures Tailscale MagicDNS always works even without adding 100.100.100.100 to DNS servers
environment.etc."resolver/ts.net".text = "nameserver 100.100.100.100";
environment.etc."resolver/ts.net".text = ''
nameserver 100.100.100.100
nameserver fd7a:115c:a1e0::53
'';
# This file gets created by tailscaled when `Override local DNS` is turned off
environment.etc."resolver/ts.net".knownSha256Hashes = [