snowflake/hosts/haru/services/adguardhome/adguardhome.nix

55 lines
1.2 KiB
Nix
Raw Normal View History

{config, ...}: {
2024-01-07 17:50:34 -05:00
imports = [
./filters.nix
./rewrites.nix
];
sops.secrets.nextdns = {owner = "adguardhome";};
users.users.adguardhome = {
isSystemUser = true;
group = "adguardhome";
};
users.groups.adguardhome = {};
2024-01-07 18:05:04 -05:00
networking.firewall.allowedTCPPorts = [53 3000];
2024-01-07 17:50:34 -05:00
networking.firewall.allowedUDPPorts = [53];
2024-01-07 17:50:34 -05:00
services.adguardhome = {
enable = true;
openFirewall = true;
mutableSettings = true;
settings = {
bind_port = 3000;
bind_host = "192.168.1.103";
os = {
user = "adguardhome";
group = "adguardhome";
};
dns = {
upstream_dns_file = config.sops.secrets.nextdns.path;
enable_dnssec = true;
cache_optimistic = true;
2024-01-08 14:54:58 -05:00
bootstrap_dns = [
"9.9.9.10"
"149.112.112.10"
"2620:fe::10"
"2620:fe::fe:10"
];
};
2024-01-07 17:50:34 -05:00
statistics = {
enabled = true;
interval = "336h";
2024-01-07 17:50:34 -05:00
ignored = [
2024-01-08 14:54:58 -05:00
# i dont wanna see what people are watching
2024-01-07 17:50:34 -05:00
"youporn.com"
"pornhub.com"
"xvideos.com"
"onlyfans.com"
"fansly.com"
2024-01-08 14:54:58 -05:00
"xnxx.com"
2024-01-07 17:50:34 -05:00
];
};
};
};
}