commit 8bbb9d4ad39456358d0725a9c2a194f91f0790ab
parent 177318ec22dd0b6ef53ca788ee97659685e81242
Author: Katja (ctucx) <git@ctu.cx>
Date: Wed, 23 Apr 2025 14:41:30 +0200
parent 177318ec22dd0b6ef53ca788ee97659685e81242
Author: Katja (ctucx) <git@ctu.cx>
Date: Wed, 23 Apr 2025 14:41:30 +0200
configurations/nixos/services/dns-server: move primary from `hector` to `rabbit`
3 files changed, 55 insertions(+), 52 deletions(-)
diff --git a/configurations/nixos/services/dns-server.nix b/configurations/nixos/services/dns-server.nix @@ -48,6 +48,8 @@ in { }; }; + systemd.services.knot.after = lib.mkIf config.dns.primary [ "agenix-install-secrets.service" ]; + systemd.tmpfiles.settings.knotExtraZones = lib.mkIf config.dns.primary { "${config.dns.dataDir}/extraZones".d = { group = "knot"; @@ -93,7 +95,7 @@ in { dns = { enable = true; - primary = lib.mkDefault (config.networking.hostName == "hector"); + primary = lib.mkDefault (config.networking.hostName == "rabbit"); keyFiles = lib.mkIf config.dns.primary [ config.age.secrets.knotKeys.path ]; extraZones = lib.mkIf config.dns.primary { "${acmeZone}" = { @@ -160,8 +162,8 @@ in { subdomains = { ns1 = (host - inputs.self.nodes.hector.ip4Address - inputs.self.nodes.hector.ip6Address + inputs.self.nodes.rabbit.ip4Address + inputs.self.nodes.rabbit.ip6Address ); ns2 = (host inputs.self.nodes.wanderduene.ip4Address
diff --git a/secrets/hector/knotKeys.age b/secrets/hector/knotKeys.age @@ -1,49 +0,0 @@ ------BEGIN AGE ENCRYPTED FILE----- -YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBmSkdaeENuVExWbXRqMDJ1 -OVhIZllmMk9tcHlZNmpadXdBT29LdGFUcUE4CmVMTXEweE9ISGJhWWRjaFBSWlRI -eTBuVXA2NkNJWU5ETjMrRmdpNWc4SjAKLT4gc3NoLWVkMjU1MTkgeWFMSFNRIGhw -TlRyNEJRTkF4K2NndVRLcklKVGdsRkw1MVZKdmYwekJZcjRCdFlGV3MKQnJRNFla -eHY2U0Q0YTNySDBUUWhFOXF4djVUWFo2NzlxaWhhZUpaczhndwotPiBgWS1ncmVh -c2UgMS07SWtmMCkgNSB+SkEKK1dqMHZONmZFYzRRQTBGdGZaU1RUMXZWWDA4Vkpn -VTRZMzY2czhJbVpNYU4ydVEKLS0tIG1HdnE5MS95WXE3elEydVN2V1lpS3BuNnZr -S1lJalBLdjVUVGFPcEt5c3MKUpIHCQqQ8FpucGNWX+ZHGmg6WzASWbogddlnP75l -XZAtW/7fb0z5ehtbiSeWn3ApJxGhNQWH/aLHLsn5rWmQnB5YVcBs0XN8q02O/PJy -HFEbR7G5kWBqez+svXFjxgxyTTb0Mg2b0bKBuM+ekMbRzDVeexlCjuM6j2TIBT7L -GQyRK47NGNf/ASdEqCGG4wrGK2MSnXXHlpcZCS12o0tkILTrEipaRwdofvR/SbYb -+zOXrDoNs6iZKaVh5ILiqNo+h5G4b4XZ6Pcn6Q5/cE+7FFigQXPf0124t5g5oOhu -u5s8DRq28CoauYeY4N3RitT4HHCTKSzpuFuKlQXOsdupeOei0URgu/+zEma3Ag+s -r+pfdHSgrXEi0e3auSWNoS1ILLFyRgn+Qb32a8ufZ+4AWIU8gCIBTn21MV5wdJ5g -pNsmsvBpHOMtNTJ2GnTu0l3Nw66QBE7blW5FE5Zxr2ZjKuFALBrpXAJsfc/HgPjV -dVO0YkiBpRQFQ8+l/JJ9R3wGLHTk4xN4IffqM9Jf9BaINxgA85ocU1GwV+YK/4jY -M0XUHwYx9dn15McnHVETEvPX6t8eO+EgQAEUGWO+jYQ1VHBAaKbekH74uPTvglNQ -LLwBmt0kpVN1CDYz3a87USJxq9cArngo5cKh5wHLxjKLfC+Jkg6EMy8yhvev98v0 -huc+l8cSfzWCV041BgXLYl6PXY/k0SrJJnXpEN04cA3qZiXjfcmYBvshl52fPIAf -vnRU13ErBayZEGhxOWqncaZUZlDPG9LTWvjw9/a4Hx0zI3pBP0CQy/9JmTvDXfVE -xcgVtis69PHB+qx0YeE8zu80fOycH6HpNzZxEQe9+Onz5fePBwTtVDoO0mq9XvbD -3tHMnXA2MkaIfRz6V+E34BkbEh4+m0bDCIxmla/7vpVLTJ/MnO3ddSotNC5Jiv4J -o75/NieiS6kao4vnyG9bQhwfCUPeOmDIw/YANjbfbndm+zZb8qQ12m51Bd9IJF9u -xJDF+TntUu7p/p+W2h5dc/wsvqt2LPnd1tdV5QHp3Ii3dTQe0YlMvYdUl2MhLmSq -2ILqRVnzRXvrt2DybsQA7nuj5humukKkruYIVW5dITniAagHhPW7d78WE82EMoLE -IM2P4JGqqLn7UhJd6LihrKt3OYh7lRj5NNBNTgtagRtJUKRrdoVBiAna2/fMiV1r -FnLG4jpw/l0F3lqaDTzSRT1FZy3L40lnQG/DqdvnyIG2P7leR+b2j/caJngUln+L -4VQcPN4aqHULnPkRKXE/GkE+sT9U190mntxeJpa8xI3gvyGCqnu877P6xWZzjnZm -0Lu3ACDyfbn31fvmtBn0OdjAqUIQv0m6GTsdYLftTyQO9Kaw4fdyvfbmgWpMSWIf -0NyhVDI6zBYxbVKgeASiweAdjN8dO90Bb/0CnHBUgRDgwjzm9aYDjAvo/0X7iRYQ -o3Ms2UcyYT45aQa4kaA+cMRiBHypw71hRXTw4s2pYAt9nFBnFnPMpdr2wRb2wAa8 -FP1KlSr/+r/BsRyBQIHAknmaNzrCFkx9aBNe96orv6yfFNbzVJxYDhMg8s3UOsVE -0+wtUqgMXkZ2vMrsw6YmZ8oO6SZV3xsQCVerS9mGFtWYYFwY3G4/upPa63LC9yNj -ghYUjsToN6HRU95v82si+N4Fbh4gHYs0A/a09NxPYv9hHAe2AHgvJNIZ7ExBDryd -mYzg5SPewYrc+LPPYYjHD17DrVs+xBoiI1Z9qTkdqg5H1PNLnknaTyaIT6/Gp85c -JAbCnNlOswV/VBC5b8c+a57GaO0AeXOmZH95r9ZHATueaQDUWFhlskuOjRcDJQ5g -tBiSidV8tnNvn/LNb341+LE/53sDxtxpTR9CXWosFbjR9aEN2ocp5KD7VP2oBJkU -IH4ZgQJ2c+5b8afVvCyeNRLQavS3NktNmYNY6iiWpdb324J/yLWeMiloQrp1+vEu -beQaBWNHQ7eXpvtpuIMt+j5ZcTOfvqK4f+kBDMLJXGP5Us5Z1brglF0TjfK0NDFI -t1jO0w6vEWtnkKRVpfUyuZkEeAkfhAdDeIguaF34F+dFdmSedTGhI1BmpDhpBhf9 -aFSiI7h8bKxg57g+8pquJAAP+XWw2d19PMzhuBw8+nvFchnDzwCLOWtPQXOps2eg -iseo9ed3K6IFFCy95RiWK247BirwCp4dqut0dHp+d/33dWIiWF4gJoSXAQkafq2y -Hvh8akJ+eL/rsoCLwsXWKMGCow8AA0A4FGQaLLshwD79x7DSHUiQcHwZZyU5tf95 -dNioNtoaeJpfsvrY2LpwJGWh7m7mqLP+yY5bj5apvm5j9b/6G31vT7a4SIN4XzjQ -tbaHcaGHwWlFgTHQuX/30KZngfGZn/tXfOuzO4Q6AU+ugffQgJAdrw8cUMb9t1la -FdYuYiITcA0pTdLSO+a21icFBGr5jxuydxCrVIKUmBfKvTv3fXy5A1zDowIQNO95 -eSjI4+9dkdjvJ/ZDIsG3Dk49hm9baFovOF28LJ/+444= ------END AGE ENCRYPTED FILE-----
diff --git a/secrets/rabbit/knotKeys.age b/secrets/rabbit/knotKeys.age @@ -0,0 +1,50 @@ +-----BEGIN AGE ENCRYPTED FILE----- +YWdlLWVuY3J5cHRpb24ub3JnL3YxCi0+IFgyNTUxOSBYc0pGTU9vWXYzcUFVQTcr +VDFzMk9oamlaTUxGVjBoNzRqQVRVblNPTkg0CjkwT2RMU1U2TDIvTDA0Y2kybHFO +WksxTkRnTkplVW5kVTYxUUxHVTVjc3cKLT4gc3NoLWVkMjU1MTkgaGtMdUVnIHZL +NE1ORUlRb2xlQy9HQ0R3NitUNTc1a0w3SXZtWkdiT3JlQWh6UmQ0Z0kKVU01MGhJ +Rm1BNmVUQWtBZ21CNVVFV3NUYmU0VHdLSkY4eU9abmYwWWIzOAotPiA4SjdQNiYt +Z3JlYXNlIFRjIDggYHtsIHJeWT1KZFcKazdwcjF6TFp2UlhtbFNJOXE3V1AxUUdl +ZHo1QVBJRi9FZ0dvTGxPV2ZLMktrd3k1SncraEZibXRPZwotLS0gbTlxSzdnRWlU +TUpLaEFic3AyaGFNS2FGcFQxUEdkYmU0ZnU4MTZQTHRLWQo5kDMv9mrglsSYgR7S +OwzWAF2q4vmUJsY383p/BkOw56ddvhHpNQF6K55Asc3KC6qUPdULf6VgaGb5lzqB +Z4D3UGmgy9vRja2FOmuDaeaOyG/RN66rzoVsiaIjzl/VODfwdtF2x+Pi0I7uk1M1 +rZn0NBTkgbg7mtr1NZc3Vfy3cZWQEq2MWVpUmg9QYiGJf70H9/2KSQ+YK6oH+wWK +DoWaYLvrKT/8kf38pfWBEGf/ha96WZtExqW7kSV15RpuWBaSPB3SgSUKsEU8xL5+ +aApKiwACdyh1bVCyw0cFZ+reeB8l7J20z3rp9s3WMd9LVNCFaN1QPBm3vrHQfecK +wKnWyKFOkBYbTjj5/Lw4aVJ/3p9x/+XlN/AgCM6plr66yWFFtqWUuf8qhgnGme/5 +Zsf+zbHeQOnABsFyW9vF5JT9XC8lVzHJBCCVLqinYmj36XpjUCoQJ7KW73+9gS2k +4DrIWuYpSB1Wg4wKHebi0pMZD/gJbNg/X2B3sDtG0r7XK3q5W77m2gjZJJk/Kg1D +WNWG+lotUYiko0va0uOxHrcaIdtrWVYZKpNlG2Uq3XpHmves4aAAT7EK8nC3qx7P +P4Gkc2M6yw6qvHvLPNOKWE9XJsBUkP9YTJyZaRo3tmZeVannhMv0YwfwoZ97jHas +uIC4w+R6wHy8zmUKB1aOr2z5KdtgxSsayGCL1o0Yoi33rJbCyKZ/7oZIyeppGPbJ +jSa0nQNTs3RG8uZir5DlW55v12WkicJMPHOaxdyhvoc/kEczEsjFjTkX207qNF5l +7rhLjr/ASiRD6olKeyNss0HtF/YayXDXWfpeEpEV48kQsazeNkOlBVzA82wD4Y9M +ZJuT9DOi3lOfMsorAQp9UfcZgXsQbzwssNyxA830KC22ZXDWW1XMAg5xSIf3TGVo +vMQqrNCOMlQmMbIfxOdaMnPtkhPnmOwLdJohV76VGTdUCYTbZiH+NoDpJZZWX+58 +GOXgKDy0I2R1I+sh0Vn+hcWgh2HeDKSiHF3mMF9FYyo9bxwD2eTWwEtfMXk2bIH1 +KojXKAl741V0bA5cD53dDuPrMJaNTkqbz5q5qbddFzTpGJQv3hTAU/lglSLMMbdF +hilRE5a/XWatYOlZnlMsb0SvvgYdvV5Sh2Kyga+tJc+tdqzqFi5T1V+CsSmQqdkY +MI+hx1f9ogEWY/Kgya8y9lF3wXheSWhINRk3EughFLMseRSSlMR+CX9YdIzxd5V0 +tQSAzsiRmPgVrAMMbbt6gTO84yDVmbhPFQq7ug5kZdxU4iTaWMXEv6ivePpCCJaM +UI0FJAvBsh9PB+mBvCQyXQ6ychxInQV/i8nMnb7VSP3qwbh0MQAWF7dNUhxuXm4J +z4ab3gAr9qYxFzzI7zmvMUPfuNk8x01ByM6Iw9VkGLiGJW/5jvSAI58p5iyQlxRS +asPkLboAcmrxGDayV2YYrWZd/oGRPALXnuxt4MjuZHNW1q8KbeFimw0/L3OnTKD6 +npMQI7qReRMC6azvoQik0WKxwnVLHUgBt7UhqIdCrH0o1JmbXRYFnz3W83kPeF6h +tk9Afc41sPvbtlXY6Vh6hTL9d60Mc8c78YjnQ4r89p+82GkuRDZKXdoKgAWvZWrG +bHfpAP/eYYbVcvaLQ6Gt3VwU0ZJbIIPdhh/aymErN8x8CkKcHYLgtKpdiJVTknjY +VGqZJp1AIqAUZB2yPy4NLU+7bl7E80rlJAoPtIoXS4P9b7Mp/FYk91lLydObDbG6 +jbvmw7DXy4+ScHQsCFWjh+n2u7nvtX0dKuqsOavFkp0z7WqH27bmnOBJJc+MHnfL +Kb+RtXwxenTGHZzmjUAqp27qKQebJc3M3dKMa/Sf5yyz//C35+YUOzW3rHNuIJiT +QVt6XJcsqf08gxGrJhlmZQosUYCQnxA6dduUK5f0v1FHd+hQuh90t7o5VAKfBIR/ +8GogeCx7HMGVSuD5e/a93rap9WipGpm6t1+em7pysv7F/HRmTwPXON36F88oOZ8i +6xcvUwFaKunnx75X9dVnrEgf3GbHnYdLFEnuD0grPynti7b4AxGWRFKGBvWrPYnU +uPAMmjnnzZhH0uyL/Ah/A0OKf6OYGA7Vv9hZohIR/d5F7ROjyFvhxTilgkTkInfs +3GXcLKbUmc1GHku4WhubAkLqsM6edQVyXOlrEXmb/DtY8/Dw/6fo6gpsAMiiFq/4 +yEHxk2m9neuKMDy8egwBgOj/CGdI1WSRpk1327CCec/aJbfb5b3zCug3HDRPBMBC +mOy6opfZzlJdbkKFBoCIqmCmriiBYLfs677E0b4CvD1KBu4B+2rsP0qmLuWEq+VI +TGsqBZuWgyRDmPF4HRBwmT4Q/i9B/KkjIYGDENv+lJew765dyYafDNf7EPSdPot2 +dIDTSGOuI1OjkwbfSj6EBRD7uFBMvO5dOztO2NnoLWwM4kBiTlhECOZqlrsoAAqq +a1JP/Y4kels61JlmvIjf914smkoWq6BfCyn5cqDVgmESYBa6i6eSx2h3MmmKBOQI +Vg== +-----END AGE ENCRYPTED FILE-----