2023-08-07 22:03:49 +00:00
|
|
|
## Dnsmasq
|
|
|
|
|
## =======
|
|
|
|
|
##
|
|
|
|
|
## This module includes a service to provide DNS, DHCP, and IPv6
|
|
|
|
|
## router advertisement for the local network.
|
|
|
|
|
|
2025-02-10 21:55:08 +00:00
|
|
|
{
|
|
|
|
|
lib,
|
|
|
|
|
pkgs,
|
|
|
|
|
config,
|
|
|
|
|
...
|
|
|
|
|
}:
|
2023-07-14 21:53:25 +00:00
|
|
|
let
|
|
|
|
|
inherit (lib) mkOption types;
|
2023-08-04 19:39:29 +00:00
|
|
|
inherit (pkgs) liminix;
|
2025-02-10 21:55:08 +00:00
|
|
|
in
|
|
|
|
|
{
|
2023-07-14 21:53:25 +00:00
|
|
|
options = {
|
|
|
|
|
system.service.dnsmasq = mkOption {
|
2023-08-04 19:39:29 +00:00
|
|
|
type = liminix.lib.types.serviceDefn;
|
2023-07-14 21:53:25 +00:00
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
config = {
|
2024-07-15 18:00:08 +00:00
|
|
|
system.service.dnsmasq = config.system.callService ./service.nix {
|
2023-08-04 19:39:29 +00:00
|
|
|
user = mkOption {
|
|
|
|
|
type = types.str;
|
|
|
|
|
default = "dnsmasq";
|
2025-02-10 21:55:08 +00:00
|
|
|
description = "Specifies the unix user which dnsmasq will run as";
|
2023-08-04 19:39:29 +00:00
|
|
|
};
|
|
|
|
|
group = mkOption {
|
|
|
|
|
type = types.str;
|
|
|
|
|
default = "dnsmasq";
|
2025-02-10 21:55:08 +00:00
|
|
|
description = "Specifies the unix group which dnsmasq will run as";
|
2023-08-04 19:39:29 +00:00
|
|
|
};
|
|
|
|
|
resolvconf = mkOption {
|
|
|
|
|
type = types.nullOr liminix.lib.types.service;
|
|
|
|
|
default = null;
|
|
|
|
|
};
|
|
|
|
|
interface = mkOption {
|
|
|
|
|
type = liminix.lib.types.service;
|
|
|
|
|
default = null;
|
|
|
|
|
};
|
|
|
|
|
upstreams = mkOption {
|
|
|
|
|
type = types.listOf types.str;
|
2025-02-10 21:55:08 +00:00
|
|
|
default = [ ];
|
2023-08-04 19:39:29 +00:00
|
|
|
};
|
|
|
|
|
ranges = mkOption {
|
|
|
|
|
type = types.listOf types.str;
|
|
|
|
|
};
|
2023-09-04 21:06:53 +00:00
|
|
|
hosts = mkOption {
|
2025-02-10 21:55:08 +00:00
|
|
|
default = { };
|
|
|
|
|
type = types.attrsOf (
|
|
|
|
|
types.submodule {
|
|
|
|
|
options = {
|
|
|
|
|
mac = mkOption {
|
|
|
|
|
description = ''
|
|
|
|
|
MAC or other hardware address to match on. For Ethernet
|
|
|
|
|
this is a 48 bit address represented as colon-separated
|
|
|
|
|
hex bytes, or "id:clientid" to match a presented
|
|
|
|
|
client id (IPv6 DUID)
|
|
|
|
|
'';
|
|
|
|
|
type = types.str;
|
|
|
|
|
example = "01:20:31:4a:50";
|
|
|
|
|
};
|
|
|
|
|
v4 = mkOption {
|
|
|
|
|
description = "IPv4 address to assign to this client";
|
|
|
|
|
example = "192.0.2.1";
|
|
|
|
|
type = types.str;
|
|
|
|
|
};
|
|
|
|
|
v6 = mkOption {
|
|
|
|
|
type = types.listOf types.str;
|
|
|
|
|
description = "IPv6 addresses or interface-ids to assign to this client";
|
|
|
|
|
default = [ ];
|
|
|
|
|
example = [
|
|
|
|
|
"fe80::42:1eff:fefd:b341"
|
|
|
|
|
"::1234"
|
|
|
|
|
];
|
|
|
|
|
};
|
|
|
|
|
leasetime = mkOption {
|
|
|
|
|
type = types.int;
|
|
|
|
|
default = 86400;
|
|
|
|
|
};
|
2023-09-04 21:06:53 +00:00
|
|
|
};
|
2025-02-10 21:55:08 +00:00
|
|
|
}
|
|
|
|
|
);
|
2023-09-04 21:06:53 +00:00
|
|
|
};
|
2023-08-04 19:39:29 +00:00
|
|
|
domain = mkOption {
|
|
|
|
|
# this can be given multiple times so probably should be
|
|
|
|
|
# domains plural and list of string
|
|
|
|
|
description = "Domain name for DHCP service: causes the DHCP server to return the domain to any hosts which request it, and sets the domain which it is legal for DHCP-configured hosts to claim";
|
|
|
|
|
type = types.str;
|
|
|
|
|
example = "example.com";
|
|
|
|
|
};
|
|
|
|
|
};
|
2023-07-14 21:53:25 +00:00
|
|
|
users.dnsmasq = {
|
2025-02-10 21:55:08 +00:00
|
|
|
uid = 51;
|
|
|
|
|
gid = 51;
|
|
|
|
|
gecos = "DNS/DHCP service user";
|
2023-07-14 21:53:25 +00:00
|
|
|
dir = "/run/dnsmasq";
|
|
|
|
|
shell = "/bin/false";
|
|
|
|
|
};
|
|
|
|
|
groups.dnsmasq = {
|
2025-02-10 21:55:08 +00:00
|
|
|
gid = 51;
|
|
|
|
|
usernames = [ "dnsmasq" ];
|
2023-07-14 21:53:25 +00:00
|
|
|
};
|
2025-02-10 21:55:08 +00:00
|
|
|
groups.system.usernames = [ "dnsmasq" ];
|
2023-07-14 21:53:25 +00:00
|
|
|
};
|
|
|
|
|
}
|
