Systemd/resolved: Difference between revisions

From NixOS Wiki
← Older edit
VisualWikitext
Klinger (talk | contribs)
trusted
736 edits
Onny (talk | contribs)
157 edits
No edit summary
 
(2 intermediate revisions by 2 users not shown)
Line 1: Line 1:
{{Systemd/breadcrumb}}
{{Systemd/breadcrumb}}
{{DISPLAYTITLE:systemd-resolved}}
{{DISPLAYTITLE:systemd-resolved}}
[https://www.freedesktop.org/software/systemd/man/systemd-resolved.html systemd-resolved] is a [[systemd]]service that provides network name resolution to local applications via a D-Bus interface, the resolve NSS service (nss-resolve(8)), and a local DNS stub listener on 127.0.0.53. See systemd-resolved(8) for the usage.
[https://www.freedesktop.org/software/systemd/man/systemd-resolved.html systemd-resolved] is a [[systemd]] service that provides network name resolution to local applications via a D-Bus interface, the resolve NSS service (nss-resolve(8)), and a local DNS stub listener on 127.0.0.53. See systemd-resolved(8) for the usage.


== Configuration ==
== Configuration ==
Line 7: Line 7:
The following configuration configures resolved daemon to use the public DNS resolver provided by [https://www.cloudflare.com/learning/dns/what-is-1.1.1.1/ Cloudflare]. DNSSEC and DNS-over-TLS is enabled for authenticity and encryption.
The following configuration configures resolved daemon to use the public DNS resolver provided by [https://www.cloudflare.com/learning/dns/what-is-1.1.1.1/ Cloudflare]. DNSSEC and DNS-over-TLS is enabled for authenticity and encryption.


<syntaxHighlight lang="nix">
<syntaxhighlight lang="nix">
networking.nameservers = [
networking.nameservers = [
   "1.1.1.1#one.one.one.one"
   "1.1.1.1"
   "1.0.0.1#one.one.one.one"
   "1.0.0.1"
];
];


Line 18: Line 18:
   domains = [ "~." ];
   domains = [ "~." ];
   fallbackDns = [
   fallbackDns = [
     "1.1.1.1#one.one.one.one"
     "1.1.1.1"
     "1.0.0.1#one.one.one.one"
     "1.0.0.1"
   ];
   ];
   dnsovertls = "true";
   dnsovertls = "true";
};
};
</syntaxHighlight>
</syntaxhighlight>
[[Category:systemd]]
[[Category:systemd]]
[[Category:Networking]]
[[Category:Networking]]

Latest revision as of 18:53, 14 May 2024

systemd-resolved is a systemd service that provides network name resolution to local applications via a D-Bus interface, the resolve NSS service (nss-resolve(8)), and a local DNS stub listener on 127.0.0.53. See systemd-resolved(8) for the usage.

Configuration

The following configuration configures resolved daemon to use the public DNS resolver provided by Cloudflare. DNSSEC and DNS-over-TLS is enabled for authenticity and encryption. 

networking.nameservers = [
  "1.1.1.1"
  "1.0.0.1"
];

services.resolved = {
  enable = true;
  dnssec = "true";
  domains = [ "~." ];
  fallbackDns = [
    "1.1.1.1"
    "1.0.0.1"
  ];
  dnsovertls = "true";
};
Retrieved from "https://wiki.nixos.org/w/index.php?title=Systemd/resolved&oldid=12768"