Update networking to work with tailscale

2025-04-06 15:03:04 +10:00 · 2025-04-06 15:03:04 +10:00 · 31ccc723c8
commit 31ccc723c8
parent 855c05d027
2 changed files with 15 additions and 6 deletions
--- a/nixos/hosts/nixos/hardware-configuration.nix
+++ b/nixos/hosts/nixos/hardware-configuration.nix
@ -189,13 +189,20 @@
  # networking.interfaces.enp6s0.useDHCP = lib.mkDefault true;
  # networking.interfaces.wlp5s0.useDHCP = lib.mkDefault true;

-  systemd.network.enable = true;
+
+  networking.useNetworkd = true;
+  networking.useDHCP = false;
+  networking.interfaces.enp4s0.useDHCP = true;
+  networking.interfaces.enp6s0.useDHCP = true;
+  networking.interfaces.tailscale0.useDHCP = false;
+  networking.nftables.enable = true;

  networking.nameservers = [
    "1.1.1.1#one.one.one.one"
    "1.0.0.1#one.one.one.one"
  ];

+  # systemd.network.enable = false;
  systemd.network.networks."10-wan" = {
    # match the interface by name
    matchConfig.Name = "enp4s0";
--- a/nixos/hosts/nixos/services.nix
+++ b/nixos/hosts/nixos/services.nix
@ -54,7 +54,11 @@
      };
    };

-    tailscale.enable = true;
+    tailscale = {
+      enable = true;
+      useRoutingFeatures = "both";
+      package = unstable.tailscale;
+    };

    # tailscale.extraSetFlags = [
    #   "--advertise-exit-node"
@ -63,8 +67,8 @@

    resolved = {
      enable = true;
-      dnssec = "true";
-      domains = [ "~." ];
+      # dnssec = "true";
+      # domains = [ "~." ];
      fallbackDns = [
        "1.1.1.1#one.one.one.one"
        "1.0.0.1#one.one.one.one"
@ -72,8 +76,6 @@
      dnsovertls = "true";
    };

-
-
    # blocky = {
    #   enable = true;
    #   settings = {