ericonr
/
dotfiles
mirror of https://github.com/ericonr/dotfiles.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Add networking setup. 

- iwd config uses openresolv
- openresolv sets up an unbound config
- add a dnssec root to unbount
- add unbound config including infra-keep-probing, which makes it not
  cache network failures when connectivity has issues [1]
- add wireguard and openresolv packages to base set

[1] https://unbound-users.unbound.narkive.com/DjcIaXIy/unbound-stops-answering-after-adsl-line-bounce
This commit is contained in:
Érico Nogueira 2021-09-24 16:09:53 -03:00
parent 96d550eace
commit 4cec3154fb
7 changed files with 28 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
void/void.d/etc-x86/iwd/main.conf Normal file
View File

@ -0,0 +1,4 @@
[General]
UseDefaultInterface=true
EnableIPv6=true
EnableNetworkConfiguration=true

3
void/void.d/etc-x86/resolv.conf
View File

@ -1,3 +0,0 @@
# config to be replaced by dhcpcd
nameserver 1.1.1.1

3
void/void.d/etc-x86/resolv.conf.head
View File

@ -1,3 +0,0 @@
# config kept after dhcpcd
nameserver 1.1.1.1

7
void/void.d/etc-x86/resolvconf.conf Normal file
View File

@ -0,0 +1,7 @@
# Configuration for resolvconf(8)
# See resolvconf.conf(5) for details
resolv_conf=/dev/null
name_servers="8.8.8.8 1.1.1.1"
private_interfaces="*"
unbound_conf=/etc/unbound/resolvconf.conf

9
void/void.d/etc-x86/unbound/root.key Normal file
View File

@ -0,0 +1,9 @@
; autotrust trust anchor file
;;id: . 1
;;last_queried: 1632507144 ;;Fri Sep 24 15:12:24 2021
;;last_success: 1632507144 ;;Fri Sep 24 15:12:24 2021
;;next_probe_time: 1632543437 ;;Sat Sep 25 01:17:17 2021
;;query_failed: 0
;;query_interval: 38934
;;retry_time: 7786
. 86400 IN DNSKEY 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlExOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgCmr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnXGXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ;{id = 20326 (ksk), size = 2048b} ;;state=2 [ VALID ] ;;count=0 ;;lastchange=1626592820 ;;Sun Jul 18 04:20:20 2021

7
void/void.d/etc-x86/unbound/unbound.conf Normal file
View File

@ -0,0 +1,7 @@
server:
use-syslog: yes
interface: 0.0.0.0
auto-trust-anchor-file: "/etc/unbound/root.key"
infra-keep-probing: yes
include: "/etc/unbound/resolvconf.conf"

2
void/void.sh
View File

@ -31,7 +31,7 @@ assemble_list() {
done
}
base="chrony elogind iwd vsv socklog-void doas font-spleen"
base="chrony elogind iwd wireguard-tools openresolv vsv socklog-void doas font-spleen"
base_desc="$(print_item base) Install base system utilities."
luks="cryptsetup"