philipp/nixpkgs
1
0
Fork 0
Code Issues Pull requests Projects Releases Activity
nixpkgs/nixos/modules/services/networking
History
Joachim Fasting 52f0553209 Add dnscrypt-proxy service 
The dnscrypt-proxy service relays regular DNS queries to
a DNSCrypt enabled upstream resolver.
The traffic between the client and the upstream resolver is
encrypted and authenticated, which may mitigate the risk of
MITM attacks and third-party snooping (assuming a trustworthy
upstream).

Though dnscrypt-proxy can run as a standalone DNS client,
the recommended setup is to use it as a forwarder for a
caching DNS client.
To use dnscrypt-proxy as a forwarder for dnsmasq, do

```nix
{
  # ...

  networking.nameservers = [ "127.0.0.1" ];
  networking.dhcpcd.extraConfig = "nohook resolv.conf";

  services.dnscrypt-proxy.enable = true;
  services.dnscrypt-proxy.localAddress = "127.0.0.1";
  services.dnscrypt-proxy.port = 40;

  services.dnsmasq.enable = true;
  services.dnsmasq.extraConfig = ''
    no-resolv
    server=127.0.0.1#40
    listen-address=127.0.0.1
  '';

  # ...
}
```
2014-11-11 22:47:19 +01:00
..
ircd-hybrid nixos/manual: Use literalExample when feasible. 2014-08-27 23:41:15 +02:00
ssh nixos/ssh: Allow user to configure the package that provides ssh/sshd 2014-09-11 22:07:39 -07:00
amuled.nix
atftpd.nix More pkgs.lib -> lib fixes 2014-09-29 09:45:59 -04:00
avahi-daemon.nix
bind.nix
bitlbee.nix
btsync.nix bittorrentsync: fix storage_path. 2014-09-19 18:19:04 +04:00
chrony.nix
cjdns-hosts.sh cjdns: add peer hostnames to extraHosts, option for external config 2014-10-21 13:16:04 -04:00
cjdns.nix cjdns: service tweaks, new NixOS test 2014-11-08 23:39:02 +01:00
cntlm.nix
connman.nix
consul.nix nixos/consul: Add module 2014-09-26 03:25:14 -07:00
copy-com.nix Copy.com: client #3617 2014-09-03 11:31:51 +04:00
ddclient.nix
dhcpcd.nix start dhcpcd after network-interfaces 2014-09-06 13:52:09 +02:00
dhcpd.nix nixos/dhcpd: Wait until network interfaces are configured to start 2014-08-13 15:08:43 -05:00
dnscrypt-proxy.nix Add dnscrypt-proxy service 2014-11-11 22:47:19 +01:00
dnsmasq.nix Fixing comment case 2014-09-03 20:03:15 +04:00
ejabberd.nix
firewall.nix nixos/firewall: Cleanup in case reload fails 2014-09-16 15:51:57 -07:00
flashpolicyd.nix
freenet.nix
git-daemon.nix nixos/git-daemon: fix 'exportAll' option 2014-11-07 15:50:01 +03:00
gnunet.nix
gogoclient.nix
gvpe.nix
haproxy.nix
hostapd.nix
i2pd.nix i2pd: added package, service 2014-11-09 09:55:35 +01:00
ifplugd.nix
iodined.nix
kippo.nix
mailpile.nix mailpile: add module 2014-09-26 10:49:09 +02:00
minidlna.nix
murmur.nix
nat.nix nixos/nat: Fix override so that sysctls are properly preserved 2014-10-31 16:50:25 -07:00
networkmanager.nix
ngircd.nix
notbit.nix
nsd.nix nixos/nsd: Improve support for journald/systemd. 2014-09-05 02:54:39 +02:00
ntopng.nix
ntpd.nix
oidentd.nix
openfire.nix
openntpd.nix nixos: Add new service for OpenNTPd. 2014-09-01 16:07:28 +02:00
openvpn.nix
polipo.nix drop permission prestart from polipo service module 2014-10-16 10:57:16 -04:00
prayer.nix
privoxy.nix privoxy: upstart to systemd conversion, actions file editing 2014-08-27 11:34:10 -04:00
prosody.nix prosody: added websocket support 2014-10-15 03:57:00 +02:00
quassel.nix quassel: make a proper systemd unit (also properly works in containers now) 2014-11-08 14:59:25 +01:00
radicale.nix
radvd.nix nixos/radvd: Convert to a systemd unit 2014-08-24 03:12:55 -07:00
rdnssd.nix
rpcbind.nix
sabnzbd.nix
searx.nix
seeks.nix seeks: nixos module 2014-10-13 13:10:49 +02:00
spiped.nix
supybot.nix
syncthing.nix
tcpcrypt.nix
teamspeak3.nix
tftpd.nix
unbound.nix unbound: run in chroot 2014-08-26 21:24:09 -04:00
unifi.nix nixos/unifi: Explain and simplify the bind mount configuration 2014-08-05 23:15:49 -05:00
vsftpd.nix
wakeonlan.nix
websockify.nix
wicd.nix
wpa_supplicant.nix
xinetd.nix
znc.nix nixos/znc: fix module, createUser option does not exist anymore 2014-09-13 02:20:32 +02:00