Daniel Barlow
7e2b0068e6
There is nothing in this commit except for the changes made by nix-shell -p nixfmt-rfc-style --run "nixfmt ." If this has mucked up your open branches then sorry about that. You can probably nixfmt them to match before merging
109 lines
3.0 KiB
Nix
109 lines
3.0 KiB
Nix
## Dnsmasq
|
|
## =======
|
|
##
|
|
## This module includes a service to provide DNS, DHCP, and IPv6
|
|
## router advertisement for the local network.
|
|
|
|
{
|
|
lib,
|
|
pkgs,
|
|
config,
|
|
...
|
|
}:
|
|
let
|
|
inherit (lib) mkOption types;
|
|
inherit (pkgs) liminix;
|
|
in
|
|
{
|
|
options = {
|
|
system.service.dnsmasq = mkOption {
|
|
type = liminix.lib.types.serviceDefn;
|
|
};
|
|
};
|
|
config = {
|
|
system.service.dnsmasq = config.system.callService ./service.nix {
|
|
user = mkOption {
|
|
type = types.str;
|
|
default = "dnsmasq";
|
|
description = "Specifies the unix user which dnsmasq will run as";
|
|
};
|
|
group = mkOption {
|
|
type = types.str;
|
|
default = "dnsmasq";
|
|
description = "Specifies the unix group which dnsmasq will run as";
|
|
};
|
|
resolvconf = mkOption {
|
|
type = types.nullOr liminix.lib.types.service;
|
|
default = null;
|
|
};
|
|
interface = mkOption {
|
|
type = liminix.lib.types.service;
|
|
default = null;
|
|
};
|
|
upstreams = mkOption {
|
|
type = types.listOf types.str;
|
|
default = [ ];
|
|
};
|
|
ranges = mkOption {
|
|
type = types.listOf types.str;
|
|
};
|
|
hosts = mkOption {
|
|
default = { };
|
|
type = types.attrsOf (
|
|
types.submodule {
|
|
options = {
|
|
mac = mkOption {
|
|
description = ''
|
|
MAC or other hardware address to match on. For Ethernet
|
|
this is a 48 bit address represented as colon-separated
|
|
hex bytes, or "id:clientid" to match a presented
|
|
client id (IPv6 DUID)
|
|
'';
|
|
type = types.str;
|
|
example = "01:20:31:4a:50";
|
|
};
|
|
v4 = mkOption {
|
|
description = "IPv4 address to assign to this client";
|
|
example = "192.0.2.1";
|
|
type = types.str;
|
|
};
|
|
v6 = mkOption {
|
|
type = types.listOf types.str;
|
|
description = "IPv6 addresses or interface-ids to assign to this client";
|
|
default = [ ];
|
|
example = [
|
|
"fe80::42:1eff:fefd:b341"
|
|
"::1234"
|
|
];
|
|
};
|
|
leasetime = mkOption {
|
|
type = types.int;
|
|
default = 86400;
|
|
};
|
|
};
|
|
}
|
|
);
|
|
};
|
|
domain = mkOption {
|
|
# this can be given multiple times so probably should be
|
|
# domains plural and list of string
|
|
description = "Domain name for DHCP service: causes the DHCP server to return the domain to any hosts which request it, and sets the domain which it is legal for DHCP-configured hosts to claim";
|
|
type = types.str;
|
|
example = "example.com";
|
|
};
|
|
};
|
|
users.dnsmasq = {
|
|
uid = 51;
|
|
gid = 51;
|
|
gecos = "DNS/DHCP service user";
|
|
dir = "/run/dnsmasq";
|
|
shell = "/bin/false";
|
|
};
|
|
groups.dnsmasq = {
|
|
gid = 51;
|
|
usernames = [ "dnsmasq" ];
|
|
};
|
|
groups.system.usernames = [ "dnsmasq" ];
|
|
};
|
|
}
|