diff options
Diffstat (limited to 'modules/retired/pihole/default.nix')
| -rw-r--r-- | modules/retired/pihole/default.nix | 56 |
1 files changed, 0 insertions, 56 deletions
diff --git a/modules/retired/pihole/default.nix b/modules/retired/pihole/default.nix deleted file mode 100644 index 3a95f8a..0000000 --- a/modules/retired/pihole/default.nix +++ /dev/null @@ -1,56 +0,0 @@ -{ - inputs, - config, - ... -}: -let - ip = "10.0.0.203"; - interface = "eno1"; - directory = "/opt/pihole"; -in -{ - systemd.tmpfiles.rules = builtins.map (x: "d ${x} 0755 share share - -") [ directory ]; - - virtualisation.oci-containers.containers.pihole = { - image = "pihole/pihole:latest"; - autoStart = true; - ports = [ - "53:53/udp" - "53:53/tcp" - "80:80/tcp" - ]; - volumes = [ - "${directory}/etc:/etc/pihole" - "${directory}/etc-dnsmasq.d:/etc/dnsmasq.d" - ]; - environment = { - TZ = "America/Detroit"; - FTLCONF_LOCAL_IPV4 = ip; - INTERFACE = interface; - }; - extraOptions = [ "--network=host" ]; - }; - - age.secrets.piholeAdminPass = { - file = "${inputs.self}/secrets/piholeAdminPass.age"; - mode = "770"; - owner = "share"; - group = "share"; - }; - - systemd.services.podman-pihole.postStart = - let - password = config.age.secrets.piholeAdminPass.path; - in - '' - podman exec -it pihole pihole -a -p "$(tr -d '\n' < ${password})" - ''; - - networking.firewall = { - allowedTCPPorts = [ - 53 - 80 - ]; - allowedUDPPorts = [ 53 ]; - }; -} |