kyle/imladris
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

rift: allow port 53 for CoreDNS, vade: use rift as DNS

Browse Source 
rift: sysctl to allow rootless containers to bind port 53, open
firewall for DNS queries from LAN clients.

vade: point nameservers at rift (LAN + Tailscale) for internal
service resolution via CoreDNS (MCNS precursor). Falls back to
1.1.1.1/8.8.8.8 via systemd-resolved.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
This commit is contained in:
Kyle Isom
2026-03-25 19:19:02 -07:00
parent b49b7ca2e3
commit eecb3973b1
2 changed files with 12 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
hw/rift/default.nix
View File

@@ -7,5 +7,11 @@
]; ];
config = { config = {
# Allow rootless containers (Podman) to bind port 53 for CoreDNS (MCNS precursor).
boot.kernel.sysctl."net.ipv4.ip_unprivileged_port_start" = 53;
# Open DNS port for LAN clients querying CoreDNS.
networking.firewall.allowedTCPPorts = [ 53 ];
networking.firewall.allowedUDPPorts = [ 53 ];
}; };
} }

6
hw/vade/default.nix
View File

@@ -38,4 +38,10 @@
Driver "libinput" Driver "libinput"
'' ''
]; ];
# Use rift's CoreDNS (MCNS precursor) for internal service resolution.
networking.nameservers = [
"192.168.88.181"
"100.95.252.120"
];
} }