diff options
-rw-r--r-- | hosts/surtr/tls/default.nix | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/hosts/surtr/tls/default.nix b/hosts/surtr/tls/default.nix index f8225802..01c9050e 100644 --- a/hosts/surtr/tls/default.nix +++ b/hosts/surtr/tls/default.nix | |||
@@ -124,6 +124,9 @@ in { | |||
124 | RFC2136_TSIG_ALGORITHM=hmac-sha256. | 124 | RFC2136_TSIG_ALGORITHM=hmac-sha256. |
125 | RFC2136_TSIG_KEY=${domain}_acme_key | 125 | RFC2136_TSIG_KEY=${domain}_acme_key |
126 | RFC2136_TSIG_SECRET_FILE=${tsigSecret.path} | 126 | RFC2136_TSIG_SECRET_FILE=${tsigSecret.path} |
127 | RFC2136_TTL=0 | ||
128 | RFC2136_PROPAGATION_TIMEOUT=60 | ||
129 | RFC2136_POLLING_INTERVAL=2 | ||
127 | ''; | 130 | ''; |
128 | }; | 131 | }; |
129 | in (if isTsig then mkRFC2136 else mkKnotc) // cfg.domains.${domain}.certCfg; | 132 | in (if isTsig then mkRFC2136 else mkKnotc) // cfg.domains.${domain}.certCfg; |