Skip to content

Kresd

services.kresd.enable

Whether to enable knot-resolver domain name server. DNSSEC validation is turned on by default. You can run sudo nc -U /run/knot-resolver/control/1 and give commands interactively to kresd@1.service.

Type: boolean

Default

false

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/kresd.nix

services.kresd.extraConfig

Extra lines to be added verbatim to the generated configuration file.

Type: strings concatenated with "\n"

Default

""

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/kresd.nix

services.kresd.instances

The number of instances to start. They will be called kresd@{1,2,...}.service. Knot Resolver uses no threads, so this is the way to scale. You can dynamically start/stop them at will, so this is just system default.

Type: unsigned integer, meaning >=0

Default

1

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/kresd.nix

services.kresd.listenDoH

Addresses and ports on which kresd should provide DNS over HTTPS/2 (see RFC 8484). For detailed syntax see ListenStream in {manpage}systemd.socket(5).

Type: list of string

Default

[ ]

Example

["198.51.100.1:443""[2001:db8::1]:443""443"]

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/kresd.nix

services.kresd.listenPlain

What addresses and ports the server should listen on. For detailed syntax see ListenStream in {manpage}systemd.socket(5).

Type: list of string

Default

["[::1]:53""127.0.0.1:53"]

Example

["53"]

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/kresd.nix

services.kresd.listenTLS

Addresses and ports on which kresd should provide DNS over TLS (see RFC 7858). For detailed syntax see ListenStream in {manpage}systemd.socket(5).

Type: list of string

Default

[ ]

Example

["198.51.100.1:853""[2001:db8::1]:853""853"]

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/kresd.nix

services.kresd.package

The knot-resolver package to use. Type: package

Default

pkgs.knot-resolver

Example

knot-resolver.override { extraFeatures = true; }

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/kresd.nix