about summary refs log tree commit diff
path: root/nixos/modules/services/networking
Commit message (Collapse)AuthorAge
* add kresd service with basic optionsVladimír Čunát2017-01-25
| | | | Still celebrating today's 1.2.0 release!
* firewall: disable conntrack helper autoloading by defaultFranz Pletz2017-01-25
| | | | | | | This was disabled in the Linux kernel since 4.7 and poses a security risk if not configured properly. https://git.kernel.org/cgit/linux/kernel/git/stable/linux-stable.git/commit/?id=486dcf43da7815baa615822f3e46883ccca5400f
* linux: remove canDisableNetfilterConntrackHelpers featureFranz Pletz2017-01-25
| | | | This feature is available in all kernels in nixpkgs.
* Merge pull request #22045 from rnhmjoj/recursorMichael Raskin2017-01-24
|\ | | | | PowerDNS Recursor: add package and service
| * pdns-recursor: add servicernhmjoj2017-01-23
| |
* | smokeping: setuid for fping6Tristan Helmich2017-01-24
| |
* | Merge pull request #22043 from rnhmjoj/dnscrypt-wrapperJaka Hudoklin2017-01-23
|\ \ | | | | | | dnscrypt-wrapper: add service
| * | dnscrypt-wrapper: add servicernhmjoj2017-01-23
| |/
* | flannel service: fix enable expressionRobert Helgesson2017-01-22
| | | | | | | | Need to surround the equality check in parentheses.
* | nixos/networkmanager: trigger assertion instead of errorFranz Pletz2017-01-22
|/
* firewall: Improve the comments (documentation) (#21862)Michael Weiss2017-01-18
| | | | | | | | | | | | | | | | | | | | | | * Fix the FW names FW_REFUSE was removed and nixos-fw-input was renamed to nixos-fw. * Update the comment (documentation) at the top Order the chains of the main table alphabetically (like in the rest of the file) and add nixos-fw-rpfilter (from the raw table) and nixos-drop (used while reloading the firewall). * Refactor the module (mainly comments) - Move some attributes to the top for better visibility (that should hopefully make it easier to read and understand this module without jumping around too much). - Add some missing examples and improve some descriptions. - Reorder the mkOption attributes for consistency. - Wrap lines at 72 characters. - Use two spaces between sentences.
* ddclient: Don't include blank server= lines.Svein Ove Aas2017-01-16
|
* Merge pull request #21882 from abbradar/dhcp6Nikolay Amiantov2017-01-15
|\ | | | | DHCPv6 improvements
| * firewall service: allow DHCPv6 client trafficNikolay Amiantov2017-01-15
| |
| * dhcpd service: add DHCPv6 supportNikolay Amiantov2017-01-15
| |
* | miredo: do not run miredo-checkconfVolth2017-01-12
|/
* ddclient: Write /etc/ddclient.conf when requestedSvein Ove Aas2017-01-09
| | | | | | Fixes #20101 From PR #21417
* Added option networking.wireless.networks.*.priorityValentin Shirokov2017-01-07
| | | | It is literal 'priority' option of wpa_supplicant.conf
* bind: fix collision of binaries in outputsFranz Pletz2017-01-07
| | | | | | | | Using outputsToInstall the intended behaviour of including host and dnsutils when bind is installed can be implemented instead of using symlinks to fix installing all outputs individually with nix-env. Fixes #19761.
* Merge pull request #21625 from mayflower/smokepingFranz Pletz2017-01-04
|\ | | | | smokeping: Allow customization of cgiurl and imgurl
| * smokeping: cleanup (option ordering)Tristan Helmich2017-01-03
| |
| * smokeping: Allow full override of imgurl + cgiurlTristan Helmich2017-01-03
| |
* | Merge pull request #21592 from joachifm/cjdns-optional-extraHostsJoachim F2017-01-04
|\ \ | |/ |/| cjdns service: optional extraHosts
| * cjdns service: optionally add cjdns hosts to networking.extraHostsTomas Hlavaty2017-01-02
| | | | | | | | | | | | Enabling this incurs a heavy eval-time cost, but it's a nice usability enhancement; satisfy both concerns by making it optional (default false).
| * Revert "nixos/cjdns: do not ammend /etc/hosts"Joachim Fasting2017-01-02
| | | | | | | | | | | | This reverts commit 60ded3f3632d221ca3f82a52392e155517880456. We want to make this optional instead.
* | miredo-fix-kill-pathvolth2017-01-03
|/
* miredo: init at 1.2.6volth2016-12-31
|
* dnscrypt-proxy service: order before nss-lookup.targetJoachim Fasting2016-12-30
|
* i2pd module: fix typo (#21525)Alexey Lebedeff2016-12-30
|
* openssh: 7.4p1 no longer backgrounds when systemd is starting it.Graham Christensen2016-12-29
|
* Fix asterisk & asterisk: 13.6.0 -> 14.1.2 (#20788)Tim Digel2016-12-28
| | | | | | | | | | | | * fix/asterisk-module: use unix-group for asterisk-files * fix/asterisk-module: add configOption to use some default config-files * fix/asterisk-module: correction of skel copy * fix/asterisk-module: use /etc/asterisk as configDir * fix/asterisk-module: add reload; do not restart unit * asterisk: 13.6.0 -> 14.1.2 * fix/asterisk: compile with lua, pjsip, format_mp3 * fix/asterisk: fix indentation * fix/asterisk: remove broken flag
* bird service: add bird to systemPackagesFranz Pletz2016-12-28
| | | | For the tool birdc to monitor and configure bird.
* ntp: make timesyncd the new defaultJörg Thalheim2016-12-17
| | | | | | | | - most nixos user only require time synchronisation, while ntpd implements a battery-included ntp server (1,215 LOCs of C-Code vs 64,302) - timesyncd support ntp server per interface (if configured through dhcp for instance) - timesyncd is already included in the systemd package, switching to it would save a little disk space (1,5M)
* fix indentation in several nixos option descriptionsmichael bishop2016-12-16
|
* bird: refactor moduleJörg Thalheim2016-12-15
| | | | | | - syntax check before deploying configuration - remove static unnessary static uid/gid (configuration is opened as root) - add service hardening
* ferm: reload rules on updates instead of restartJörg Thalheim2016-12-14
|
* openfire service: more informative assertion failure messageJoachim Fasting2016-12-10
| | | | | Explain why the assertion fails; the user already knows that it *has* failed.
* dante service: fix config option typeJoachim Fasting2016-12-10
| | | | | The type was simply str but the default is null, thus resulting in a conversion error if the user fails to declare a value.
* privoxy service: remove static uidJoachim Fasting2016-12-05
| | | | | | The service owns no data, having a static uid serves no purpose. This frees up uid/gid 32
* privoxy service: additional isolationJoachim Fasting2016-12-05
|
* wireguard: remove dependency on ip-up.targetlbonn2016-12-01
| | | | | | | It was deprecated and removed from all modules in the tree by #18319. The wireguard module PR (#17933) was still in the review at the time and the deprecated usage managed to slip inside.
* cjdns: Improving systemd unit descriptionSophie Taylor2016-11-27
|
* Merge pull request #20620 from rnhmjoj/fakerouteFranz Pletz2016-11-28
|\ | | | | fakeroute: init at 0.3
| * fakeroute: add servicernhmjoj2016-11-23
| |
* | Merge pull request #19588 from Shados/add-danteFranz Pletz2016-11-22
|\ \ | | | | | | Add dante package & accompanying service module
| * | dante service: initAlexei Robyn2016-11-22
| |/
* | nixos/modules: use defaultText where applicableJoachim Fasting2016-11-21
| | | | | | | | | | | | Primarily to fix rendering of these default values in the manual but it's also nice to avoid having to eval these things just to build the manual.
* | Fix setting programs.ssh.setXAuthLocationEelco Dolstra2016-11-21
|/ | | | | | | | The configuration { services.openssh.enable = true; services.openssh.forwardX11 = false; } caused programs.ssh.setXAuthLocation to be set to false, which was not the intent. The intent is that programs.ssh.setXAuthLocation should be automatically enabled if needed or if xauth is already available.
* nixos/cjdns: do not ammend /etc/hostsEmery Hemingway2016-11-18
| | | | | | Generating IPv6 addresses at eval time required building cjdns. Fix #20422
* nsd module: use enumEric Sagnes2016-11-16
|
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-08-06 23:07:46 +0000