From e3e195c8ca3c9ae0742181ee80d0abb2f7909e15 Mon Sep 17 00:00:00 2001
From: Kjetil Orbekk <kj@orbekk.com>
Date: Tue, 31 May 2022 06:18:41 -0400
Subject: Update dns

---
 data/dns/db.orbekk.shared.zone | 4 +---
 machines/tiny1.nix             | 1 +
 modules/vpn.nix                | 2 ++
 3 files changed, 4 insertions(+), 3 deletions(-)

diff --git a/data/dns/db.orbekk.shared.zone b/data/dns/db.orbekk.shared.zone
index caf3334..f9811de 100644
--- a/data/dns/db.orbekk.shared.zone
+++ b/data/dns/db.orbekk.shared.zone
@@ -1,14 +1,12 @@
 $TTL 600
 @   IN  SOA ns1.he.net.   root.orbekk.com. (
     $serial;    serial
-    605;        refresh
+    606;        refresh
     900;        retry
     2419200;    expire
     3600;
     )
 
-    IN  NS  kakespade.trygveandre.net.
-    IN  NS  kremkake.trygveandre.net.
     IN  NS  ns1.he.net.
     IN  NS  ns2.he.net.
     IN  NS  ns3.he.net.
diff --git a/machines/tiny1.nix b/machines/tiny1.nix
index 66a2c2a..1ca2837 100644
--- a/machines/tiny1.nix
+++ b/machines/tiny1.nix
@@ -5,6 +5,7 @@
 
   orbekk.simple-firewall.enable = true;
   orbekk.simple-firewall.allowedTCPPorts = [ 22 ];
+  orbekk.vpn.enable = true;
 
   nix.gc.automatic = true;
   nix.gc.options = "--delete-older-than 14d";
diff --git a/modules/vpn.nix b/modules/vpn.nix
index 4d5aaaf..f232e14 100644
--- a/modules/vpn.nix
+++ b/modules/vpn.nix
@@ -58,6 +58,8 @@ in
       "${config.networking.hostName}-wireguard-key".file = ./. + "/../secrets/${config.networking.hostName}-wireguard-key.age";
     };
 
+    networking.networkmanager.unmanaged = [ "vpn" ];
+
     networking.wireguard = {
       enable = true;
       interfaces.vpn = {
-- 
cgit v1.2.3