nixos/modules/services/blocky/default.nix

# Fast and lightweight DNS proxy as ad-blocker for local network
{ config, lib, pkgs, ... }:
let
  cfg = config.my.services.blocky;
  domain = config.networking.domain;
in
{
  options.my.services.blocky = with lib; {
    enable = mkEnableOption "Blocky DNS Server";

    httpPort = mkOption {
      type = types.port;
      default = 8053;
      example = 8080;
      description = "port for requests";
    };

    settings = mkOption {
      type = (pkgs.formats.json { }).type;
      default = { };
      example = literalExpression ''
        { ports.http = "8053" };
      '';
      description = ''
        Override settings.
      '';
    };
  };

  config = lib.mkIf cfg.enable {
    services.blocky = {
      enable = true;

      settings = {
        ports = {
          tls = "853";
          http = cfg.httpPort;
        };
        upstream = {
          default = [
            "dns2.digitalcourage.de2" # classic
            "tcp-tls:dns3.digitalcourage.de" # DoT
            "https://dns.digitale-gesellschaft.ch/dns-query" # DoH
          ];
        };
        prometheus.enable = config.services.prometheus.enable;
      } // cfg.settings;
    };

    services.prometheus.scrapeConfigs = [
      {
        job_name = "blocky";
        static_configs = [
          {
            targets = [ "127.0.0.1:${toString cfg.httpPort}" ];
            labels = {
              instance = config.networking.hostName;
            };
          }
        ];
      }
    ];

    # untested
    services.grafana.provision.dashboards.settings.providers = [
      {
        name = "Blocky";
        options.path = pkgs.grafana-dashboards.blocky;
        disableDeletion = true;
      }
    ];
  };
}
service/blocky: init dumy service 2023-02-23 22:42:03 +01:00			`# Fast and lightweight DNS proxy as ad-blocker for local network`
			`{ config, lib, pkgs, ... }:`
			`let`
			`cfg = config.my.services.blocky;`
			`domain = config.networking.domain;`
			`in`
			`{`
			`options.my.services.blocky = with lib; {`
			`enable = mkEnableOption "Blocky DNS Server";`

service/blocky: fix config 2023-06-04 21:08:37 +02:00			`httpPort = mkOption {`
			`type = types.port;`
			`default = 8053;`
			`example = 8080;`
			`description = "port for requests";`
			`};`

service/blocky: init dumy service 2023-02-23 22:42:03 +01:00			`settings = mkOption {`
			`type = (pkgs.formats.json { }).type;`
			`default = { };`
service/blocky: fix config 2023-06-04 21:08:37 +02:00			`example = literalExpression ''`
			`{ ports.http = "8053" };`
			`'';`
service/blocky: init dumy service 2023-02-23 22:42:03 +01:00			`description = ''`
			`Override settings.`
			`'';`
			`};`
			`};`

			`config = lib.mkIf cfg.enable {`
			`services.blocky = {`
			`enable = true;`

			`settings = {`
service/blocky: fix config 2023-06-04 21:08:37 +02:00			`ports = {`
			`tls = "853";`
			`http = cfg.httpPort;`
			`};`
			`upstream = {`
			`default = [`
			`"dns2.digitalcourage.de2" # classic`
			`"tcp-tls:dns3.digitalcourage.de" # DoT`
			`"https://dns.digitale-gesellschaft.ch/dns-query" # DoH`
			`];`
			`};`
			`prometheus.enable = config.services.prometheus.enable;`
service/blocky: init dumy service 2023-02-23 22:42:03 +01:00			`} // cfg.settings;`
			`};`
service/blocky: fix config 2023-06-04 21:08:37 +02:00
			`services.prometheus.scrapeConfigs = [`
			`{`
			`job_name = "blocky";`
			`static_configs = [`
			`{`
			`targets = [ "127.0.0.1:${toString cfg.httpPort}" ];`
			`labels = {`
			`instance = config.networking.hostName;`
			`};`
			`}`
			`];`
			`}`
			`];`

			`# untested`
			`services.grafana.provision.dashboards.settings.providers = [`
			`{`
			`name = "Blocky";`
			`options.path = pkgs.grafana-dashboards.blocky;`
			`disableDeletion = true;`
			`}`
			`];`
service/blocky: init dumy service 2023-02-23 22:42:03 +01:00			`};`
			`}`