diff options
Diffstat (limited to 'hosts/surtr/tls')
-rw-r--r-- | hosts/surtr/tls/default.nix | 3 |
1 files changed, 2 insertions, 1 deletions
diff --git a/hosts/surtr/tls/default.nix b/hosts/surtr/tls/default.nix index 4e60a3f9..f1a515db 100644 --- a/hosts/surtr/tls/default.nix +++ b/hosts/surtr/tls/default.nix | |||
@@ -65,7 +65,7 @@ in { | |||
65 | extraDomainNames = optional cfg.domains.${domain}.wildcard "*.${domain}"; | 65 | extraDomainNames = optional cfg.domains.${domain}.wildcard "*.${domain}"; |
66 | dnsResolver = "127.0.0.1:5353"; | 66 | dnsResolver = "127.0.0.1:5353"; |
67 | }; | 67 | }; |
68 | mkRFC2136 = shared // { | 68 | mkRFC2136 = shared // rec { |
69 | dnsProvider = "rfc2136"; | 69 | dnsProvider = "rfc2136"; |
70 | credentialsFile = pkgs.writeText "${domain}_credentials.env" '' | 70 | credentialsFile = pkgs.writeText "${domain}_credentials.env" '' |
71 | RFC2136_NAMESERVER=127.0.0.1:53 | 71 | RFC2136_NAMESERVER=127.0.0.1:53 |
@@ -77,6 +77,7 @@ in { | |||
77 | RFC2136_POLLING_INTERVAL=2 | 77 | RFC2136_POLLING_INTERVAL=2 |
78 | RFC2136_SEQUENCE_INTERVAL=1 | 78 | RFC2136_SEQUENCE_INTERVAL=1 |
79 | ''; | 79 | ''; |
80 | dnsPropagationCheck = false; | ||
80 | }; | 81 | }; |
81 | in assert isTsig; mkRFC2136 // cfg.domains.${domain}.certCfg; | 82 | in assert isTsig; mkRFC2136 // cfg.domains.${domain}.certCfg; |
82 | in genAttrs (attrNames cfg.domains) domainAttrset; | 83 | in genAttrs (attrNames cfg.domains) domainAttrset; |