From 947d929d677dc7ee48f07327cfe792ef93e880d3 Mon Sep 17 00:00:00 2001
From: Dominik Polakovics <dominik.polakovics@cloonar.com>
Date: Mon, 4 Dec 2023 16:14:59 +0100
Subject: [PATCH 1/2] switch all dns to ns container

---
 hosts/fw.cloonar.com/modules/dhcp4.nix | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/hosts/fw.cloonar.com/modules/dhcp4.nix b/hosts/fw.cloonar.com/modules/dhcp4.nix
index 12d4a59..16cf2e9 100644
--- a/hosts/fw.cloonar.com/modules/dhcp4.nix
+++ b/hosts/fw.cloonar.com/modules/dhcp4.nix
@@ -39,7 +39,7 @@
             }
             {
               name = "domain-name-servers";
-              data = "10.42.96.1";
+              data = "10.42.97.2";
             }
           ];
           reservations = [
@@ -79,7 +79,7 @@
             }
             {
               name = "domain-name-servers";
-              data = "10.42.97.1";
+              data = "10.42.97.2";
             }
           ];
           reservations = [
@@ -104,7 +104,7 @@
             }
             {
               name = "domain-name-servers";
-              data = "10.42.101.1";
+              data = "10.42.97.2";
             }
           ];
           reservations = [
@@ -139,7 +139,7 @@
             }
             {
               name = "domain-name-servers";
-              data = "10.42.99.1";
+              data = "10.42.97.2";
             }
           ];
         }

From a5d438d3c86313b41671961a84d0bd31a1e9d4bf Mon Sep 17 00:00:00 2001
From: Dominik Polakovics <dominik.polakovics@cloonar.com>
Date: Mon, 4 Dec 2023 16:16:12 +0100
Subject: [PATCH 2/2] fix dns

---
 hosts/fw.cloonar.com/modules/networking.nix |  2 +-
 hosts/fw.cloonar.com/modules/unbound.nix    | 11 -----------
 2 files changed, 1 insertion(+), 12 deletions(-)

diff --git a/hosts/fw.cloonar.com/modules/networking.nix b/hosts/fw.cloonar.com/modules/networking.nix
index cb99ee7..162b098 100644
--- a/hosts/fw.cloonar.com/modules/networking.nix
+++ b/hosts/fw.cloonar.com/modules/networking.nix
@@ -23,7 +23,7 @@
 
   networking = {
     useDHCP = false;
-    nameservers = [ "9.9.9.9" "149.112.112.112" ];
+    nameservers = [ "10.42.97.2" ];
     # Define VLANS
     vlans = {
       infrastructure = {
diff --git a/hosts/fw.cloonar.com/modules/unbound.nix b/hosts/fw.cloonar.com/modules/unbound.nix
index 1024f78..9dc296e 100644
--- a/hosts/fw.cloonar.com/modules/unbound.nix
+++ b/hosts/fw.cloonar.com/modules/unbound.nix
@@ -130,17 +130,6 @@ let
     ];
   };
 in {
-  services.unbound = {
-    enable = true;
-    settings = cfg // {
-      server.tls-cert-bundle = "/var/lib/acme/fw.cloonnar.com/fullchain.pem";
-    }; 
-  };
-  security.acme.certs."fw.cloonar.com" = {
-    domain = "fw.cloonar.com";
-    group = "unbound";
-  };
-
   security.acme.certs."${domain}" = {
     domain = "${domain}";
     group = "996";