Skip to content

Ncdns

services.ncdns.address

The IP address the ncdns resolver will bind to. Leave this unchanged if you do not wish to directly expose the resolver.

Type: string

Default

"[::1]"

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/ncdns.nix

services.ncdns.dnssec.enable

Whether to enable DNSSEC support in ncdns. This will generate KSK and ZSK keypairs (unless provided via the optionsservices.ncdns.dnssec.publicKey, {option}services.ncdns.dnssec.privateKey etc.) and add a trust anchor to recursive resolvers . Type: boolean

Default

false

Example

true

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/ncdns.nix

services.ncdns.dnssec.keys.private

Path to the file containing the KSK private key.

Type: path

Default

"/var/lib/ncdns/bit.private"

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/ncdns.nix

services.ncdns.dnssec.keys.public

Path to the file containing the KSK public key. The key can be generated using the dnssec-keygen command, provided by the package bind as follows: 

$ dnssec-keygen -a RSASHA256 -3 -b 2048 -f KSK bit

Type: path

Default

"/var/lib/ncdns/bit.key"

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/ncdns.nix

services.ncdns.dnssec.keys.zonePrivate

Path to the file containing the ZSK private key.

Type: path

Default

"/var/lib/ncdns/bit-zone.private"

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/ncdns.nix

services.ncdns.dnssec.keys.zonePublic

Path to the file containing the ZSK public key. The key can be generated using the dnssec-keygen command, provided by the package bind as follows: 

$ dnssec-keygen -a RSASHA256 -3 -b 2048 bit

Type: path

Default

"/var/lib/ncdns/bit-zone.key"

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/ncdns.nix

services.ncdns.enable

Whether to enable ncdns, a Go daemon to bridge Namecoin to DNS. To resolve .bit domains set services.namecoind.enable = true; and an RPC username/password . Type: boolean

Default

false

Example

true

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/ncdns.nix

services.ncdns.identity.address

The IP address the hostname specified in {option}services.ncdns.identity.hostname should resolve to. If you are only using ncdns locally you can ignore this.

Type: string

Default

"127.127.127.127"

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/ncdns.nix

services.ncdns.identity.hostmaster

An email address for the SOA record at the bit zone. If you are only using ncdns locally you can ignore this.

Type: string

Default

""

Example

"root@example.com"

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/ncdns.nix

services.ncdns.identity.hostname

The hostname of this ncdns instance, which defaults to the machine hostname. If specified, ncdns lists the hostname as an NS record at the zone apex: 

bit. IN NS ns1.example.com.
If unset ncdns will generate an internal pseudo-hostname under the zone, which will resolve to the value of {option}services.ncdns.identity.address. If you are only using ncdns locally you can ignore this.

Type: string

Default

config.networking.hostName

Example

"example.com"

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/ncdns.nix

services.ncdns.port

The port the ncdns resolver will bind to.

Type: 16 bit unsigned integer; between 0 and 65535 (both inclusive)

Default

5333

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/ncdns.nix

services.ncdns.settings

ncdns settings. Use this option to configure ncds settings not exposed in a NixOS option or to bypass one. See the example ncdns.conf file at https://github.com/namecoin/ncdns/blob/master/_doc/ncdns.conf.example for the available options.

Type: ncdns.conf configuration type. The format consists of an attribute set of settings. Each setting can be eithernull, a value or an attribute set. The allowed values are integers, strings, booleans or paths.

Default

{ }

Example

`#!nix { # enable webserver ncdns.httplistenaddr = ":8202";

# synchronize TLS certs certstore.nss = true; # note: all paths are relative to the config file certstore.nsscertdir = "../../var/lib/ncdns"; certstore.nssdbdir = "../../home/alice/.pki/nssdb"; } `

Declared by: https://github.com/nixos/nixpkgs/blob/master/nixos/modules/services/networking/ncdns.nix