refactor: comment out resolved DNS customization
Commented out DNSSEC configuration and single-label resolution in systemd-resolved. This change disables custom DNS behavior to potentially align with default system behavior or compatibility requirements.
This commit is contained in:
parent
109c6be0b1
commit
fff88913be
|
@ -55,7 +55,7 @@ with lib.metacfg;
|
|||
services.ratbagd.enable = true;
|
||||
|
||||
services.resolved.enable = true;
|
||||
services.resolved.dnssec = "allow-downgrade";
|
||||
#services.resolved.dnssec = "allow-downgrade";
|
||||
services.resolved.extraConfig = ''
|
||||
ResolveUnicastSingleLabel=yes
|
||||
'';
|
||||
|
|
|
@ -6,7 +6,7 @@
|
|||
}:
|
||||
{
|
||||
services.resolved.enable = true;
|
||||
services.resolved.dnssec = "allow-downgrade";
|
||||
#services.resolved.dnssec = "allow-downgrade";
|
||||
services.resolved.extraConfig = ''
|
||||
ResolveUnicastSingleLabel=yes
|
||||
'';
|
||||
|
|
|
@ -28,7 +28,7 @@
|
|||
system.stateVersion = "23.11";
|
||||
|
||||
services.resolved.enable = true;
|
||||
services.resolved.dnssec = "allow-downgrade";
|
||||
#services.resolved.dnssec = "allow-downgrade";
|
||||
|
||||
sops.age.sshKeyPaths = [ "/persist/ssh/ssh_host_ed25519_key" ];
|
||||
sops.secrets.backup-s3.sopsFile = ../../../.secrets/t15/backup-s3.yaml;
|
||||
|
|
|
@ -51,10 +51,10 @@ with lib.metacfg;
|
|||
services.ratbagd.enable = true;
|
||||
|
||||
services.resolved.enable = true;
|
||||
services.resolved.dnssec = "allow-downgrade";
|
||||
services.resolved.extraConfig = ''
|
||||
ResolveUnicastSingleLabel=yes
|
||||
'';
|
||||
#services.resolved.dnssec = "allow-downgrade";
|
||||
#services.resolved.extraConfig = ''
|
||||
# ResolveUnicastSingleLabel=yes
|
||||
#'';
|
||||
|
||||
systemd.packages = [ pkgs.cloudflare-warp ]; # for warp-cli
|
||||
|
||||
|
|
Loading…
Reference in a new issue