nixfiles/nixos/modules/network.nix

{ lib, pkgs, config, ... }:
let
  inherit (lib) flatten optional mkIf mkDefault mkMerge versionAtLeast;
in
{
  config = mkMerge [
    {
      networking = {
        domain = mkDefault "int.${lib.my.c.pubDomain}";
        useDHCP = false;
        enableIPv6 = mkDefault true;
        useNetworkd = mkDefault true;
      };

      systemd = {
        additionalUpstreamSystemUnits = mkIf (config.system.nixos.release == "24.12:u-24.11") [
          # TODO: NixOS has its own version of this, but with `network` instead of `networkd`. Is this just a typo? It
          # hasn't been updated in 2 years...
          # This has been done upstream now :)
          # TODO: Remove when 25.05 releases
          "systemd-networkd-wait-online@.service"
        ];
      };

      services.resolved = {
        domains = [ config.networking.domain ];
        # Explicitly unset fallback DNS (Nix module will not allow for a blank config)
        extraConfig = ''
          FallbackDNS=
          Cache=no-negative
        '';
      };
    }

    (mkIf config.my.build.isDevVM {
      networking.interfaces.eth0.useDHCP = mkDefault true;
      virtualisation = {
        forwardPorts = flatten [
          (optional config.services.openssh.openFirewall { from = "host"; host.port = 2222; guest.port = 22; })
        ];
      };
    })
  ];
}
nixos/network: Backport systemd-networkd-wait-online@.service from 251 2022-06-06 15:21:37 +01:00			`{ lib, pkgs, config, ... }:`
Initial networking VM Also general improvements around VMs 2022-05-16 00:05:02 +01:00			`let`
Update inputs 2025-03-08 18:47:04 +00:00			`inherit (lib) flatten optional mkIf mkDefault mkMerge versionAtLeast;`
Initial networking VM Also general improvements around VMs 2022-05-16 00:05:02 +01:00			`in`
			`{`
			`config = mkMerge [`
			`{`
			`networking = {`
Split constants into separate lib file 2023-11-02 13:41:50 +00:00			`domain = mkDefault "int.${lib.my.c.pubDomain}";`
Initial networking VM Also general improvements around VMs 2022-05-16 00:05:02 +01:00			`useDHCP = false;`
			`enableIPv6 = mkDefault true;`
			`useNetworkd = mkDefault true;`
			`};`
nixos: Internal network tidying 2022-05-18 23:29:52 +01:00
nixos/network: Backport systemd-networkd-wait-online@.service from 251 2022-06-06 15:21:37 +01:00			`systemd = {`
Update inputs 2025-03-08 18:47:04 +00:00			`additionalUpstreamSystemUnits = mkIf (config.system.nixos.release == "24.12:u-24.11") [`
Upgrade NixOS stable to 22.11 and upgrade packages 2023-01-08 17:32:10 +00:00			# TODO: NixOS has its own version of this, but with `network` instead of `networkd`. Is this just a typo? It
			`# hasn't been updated in 2 years...`
Update inputs 2025-03-08 18:47:04 +00:00			`# This has been done upstream now :)`
			`# TODO: Remove when 25.05 releases`
Upgrade NixOS stable to 22.11 and upgrade packages 2023-01-08 17:32:10 +00:00			`"systemd-networkd-wait-online@.service"`
			`];`
nixos/network: Backport systemd-networkd-wait-online@.service from 251 2022-06-06 15:21:37 +01:00			`};`

nixos/estuary: Implement recursive DNS 2022-05-23 00:57:25 +01:00			`services.resolved = {`
			`domains = [ config.networking.domain ];`
			`# Explicitly unset fallback DNS (Nix module will not allow for a blank config)`
			`extraConfig = ''`
			`FallbackDNS=`
nixos: Minor tweaks 2022-05-28 13:57:01 +01:00			`Cache=no-negative`
nixos/estuary: Implement recursive DNS 2022-05-23 00:57:25 +01:00			`'';`
			`};`
Initial networking VM Also general improvements around VMs 2022-05-16 00:05:02 +01:00			`}`

			`(mkIf config.my.build.isDevVM {`
			`networking.interfaces.eth0.useDHCP = mkDefault true;`
			`virtualisation = {`
			`forwardPorts = flatten [`
			`(optional config.services.openssh.openFirewall { from = "host"; host.port = 2222; guest.port = 22; })`
			`];`
			`};`
			`})`
			`];`
			`}`