chore(os/kay/dns): refactor

author: sinanmohd <sinan@sinanmohd.com> 2026-03-27 11:29:28 +0530
committer: sinanmohd <sinan@sinanmohd.com> 2026-03-27 11:51:44 +0530
commit: 3d5b4849fe3dc86fdb00aeb6d041ef23105ae67b (patch)
tree: 591bd36119470b530015e7ca7783670f56de7bd9 /os/kay/modules/network/headscale
parent: f3db446c02e1e54415f0b8f2dd662f384dadea1e (diff)
1 files changed, 3 insertions, 9 deletions
diff --git a/os/kay/modules/network/headscale/default.nix b/os/kay/modules/network/headscale/default.nix
index 6f35c5d..b6766c5 100644
--- a/os/kay/modules/network/headscale/default.nix
+++ b/os/kay/modules/network/headscale/default.nix
@@ -118,14 +118,9 @@ in
     "headscale/pre_auth_key".sopsFile = ./secrets.yaml;
   };
 
-  networking = {
-    nameservers = [ "100.100.100.100" ];
-    search = [ config.services.headscale.settings.dns.base_domain ];
-
-    firewall = {
-      interfaces.ppp0.allowedUDPPorts = [ stunPort ];
-      trustedInterfaces = [ config.services.tailscale.interfaceName ];
-    };
+  networking.firewall = {
+    interfaces.ppp0.allowedUDPPorts = [ stunPort ];
+    trustedInterfaces = [ config.services.tailscale.interfaceName ];
   };
   # for exit node only
   boot.kernel.sysctl = {
@@ -189,7 +184,6 @@ in
 
     tailscale = {
       enable = true;
-      interfaceName = "headscale";
       openFirewall = true;
 
       authKeyFile = config.sops.secrets."headscale/pre_auth_key".path;
author	sinanmohd <sinan@sinanmohd.com>	2026-03-27 11:29:28 +0530
committer	sinanmohd <sinan@sinanmohd.com>	2026-03-27 11:51:44 +0530
commit	3d5b4849fe3dc86fdb00aeb6d041ef23105ae67b (patch)
tree	591bd36119470b530015e7ca7783670f56de7bd9 /os/kay/modules/network/headscale
parent	f3db446c02e1e54415f0b8f2dd662f384dadea1e (diff)