From 39840ae4e8600a8546563b6521d7df5acb35037e Mon Sep 17 00:00:00 2001
From: Leonardo <noreply@leoflo.me>
Date: Wed, 18 Mar 2026 18:33:06 +0100
Subject: dns server

---
 components/services/bind.nix | 31 +++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)
 create mode 100644 components/services/bind.nix

(limited to 'components/services/bind.nix')

diff --git a/components/services/bind.nix b/components/services/bind.nix
new file mode 100644
index 0000000..79f0608
--- /dev/null
+++ b/components/services/bind.nix
@@ -0,0 +1,31 @@
+{lib, config, pkgs, ...}: {
+  options.bind.enable = lib.mkEnableOption "Bind dns server";
+
+  config = lib.mkIf config.bind.enable {
+    services.bind = {
+      enable = true;
+
+      forwarders = [ "208.67.222.222" "208.67.220.220" ];
+
+      zones = {
+        "home.arpa" = {
+          master = true;
+          allowQuery = [ "127.0.0.0/24" "10.0.69.0/24" ];
+          file = pkgs.writeText "home.arpa" ''
+            $TTL 86400
+            @ IN SOA ns1.home.arpa. admin.home.arpa. (
+              2026031801 ; serial
+              3600       ; refresh
+              900        ; retry
+              604800     ; expire
+              86400      ; minimum TTL
+            )
+            @   IN NS  ns1.home.arpa.
+            ns1 IN A   10.69.0.1
+            @   IN A   10.69.0.1
+          '';
+        };
+      };
+    };
+  };
+}
-- 
cgit v1.3