Dogfood our authoritative DNS server

author: Nguyễn Gia Phong <mcsinyx@disroot.org> 2023-02-12 02:14:43 +0900
committer: Nguyễn Gia Phong <mcsinyx@disroot.org> 2023-02-12 02:14:43 +0900
commit: 426235c17e4d6557744701a86783907351708af7 (patch)
tree: 12cb32aafb06635a0ccf455012b3626aac985db1 /ipfs.nix
parent: 512571a3e9b4a690951db30cc027441452efc4a1 (diff)
download: nixos-conf-426235c17e4d6557744701a86783907351708af7.tar.gz
1 files changed, 6 insertions, 4 deletions
diff --git a/ipfs.nix b/ipfs.nix
index d8c19c6..5122c67 100644
--- a/ipfs.nix
+++ b/ipfs.nix
@@ -26,11 +26,13 @@ in {
 
   security = {
     acme.certs.${domain} = {
-      credentialsFile = pkgs.writeText "namesilo.env" ''
-        NAMESILO_API_KEY_FILE=/var/lib/acme/namesilo.key
-        NAMESILO_PROPAGATION_TIMEOUT=1800
+      credentialsFile = pkgs.writeText "knot.env" ''
+        RFC2136_NAMESERVER=127.0.0.1
+        RFC2136_TSIG_KEY=lego
+        RFC2136_TSIG_ALGORITHM=hmac-sha256
+        RFC2136_TSIG_SECRET_FILE=/var/lib/acme/knot.secret
       '';
-      dnsProvider = "namesilo";
+      dnsProvider = "rfc2136";
       extraDomainNames = [
         "*.ipfs.${domain}"
         "*.ipns.${domain}"
author	Nguyễn Gia Phong <mcsinyx@disroot.org>	2023-02-12 02:14:43 +0900
committer	Nguyễn Gia Phong <mcsinyx@disroot.org>	2023-02-12 02:14:43 +0900
commit	426235c17e4d6557744701a86783907351708af7 (patch)
tree	12cb32aafb06635a0ccf455012b3626aac985db1 /ipfs.nix
parent	512571a3e9b4a690951db30cc027441452efc4a1 (diff)
download	nixos-conf-426235c17e4d6557744701a86783907351708af7.tar.gz