diff --git a/hosts/fw.cloonar.com/modules/gitea.nix b/hosts/fw.cloonar.com/modules/gitea.nix
index 8288fc6..e686237 100644
--- a/hosts/fw.cloonar.com/modules/gitea.nix
+++ b/hosts/fw.cloonar.com/modules/gitea.nix
@@ -131,10 +131,6 @@ in
     labels = [
       "ubuntu-latest:docker://shivammathur/node:latest"
     ];
-    settings = {
-      # the default network that also respects our dns server settings
-      container.network = "host";
-    };
   };
 
   # containers.git-runner = {
diff --git a/hosts/fw.cloonar.com/modules/networking.nix b/hosts/fw.cloonar.com/modules/networking.nix
index a5591b7..f8e0bb4 100644
--- a/hosts/fw.cloonar.com/modules/networking.nix
+++ b/hosts/fw.cloonar.com/modules/networking.nix
@@ -20,6 +20,18 @@
     };
   };
 
+  services.resolved = {
+    enable = true;
+    # dnssec = "true";
+    domains = [ "~." ];
+    fallbackDns = [ "10.42.97.10" ];
+    extraConfig = ''
+      # DNSOverTLS=yes
+      DNSStubListenerExtra=10.89.0.1
+      DNSStubListenerExtra=10.42.97.1
+    '';
+  };
+
   networking = {
     useDHCP = false;
     # Define VLANS