From c5192a52569f574944b4642a8d21ea6739773c5f Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Motiejus=20Jak=C5=A1tys?= Date: Thu, 21 Nov 2024 06:50:25 +0200 Subject: [PATCH] tailscale: --accept-dns=false --- modules/services/tailscale/default.nix | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/modules/services/tailscale/default.nix b/modules/services/tailscale/default.nix index e99756b..cd73748 100644 --- a/modules/services/tailscale/default.nix +++ b/modules/services/tailscale/default.nix @@ -17,6 +17,10 @@ in { options.mj.services.tailscale = with types; { enable = mkEnableOption "Enable tailscale"; + acceptDNS = mkOption { + type = bool; + default = false; + }; # https://github.com/tailscale/tailscale/issues/1548 verboseLogs = mkOption { type = bool; @@ -28,7 +32,12 @@ in { services.tailscale = { enable = true; - extraUpFlags = [ "--operator=${config.mj.username}" ]; + extraUpFlags = [ + "--operator=${config.mj.username}" + ]; + extraDaemonFlags = [ + "--accept-dns=${if cfg.acceptDNS then "true" else "false"}" + ]; }; networking.firewall.checkReversePath = "loose"; networking.firewall.allowedUDPPorts = [ myData.ports.tailscale ];