im lazy

hosts/hyrule/default.nix

@@ -61,6 +61,12 @@ in {
     hostName = "hyrule";
     networkmanager.enable = true;
 
+    # Use CloudFlare's WARP+ 1.1.1.1 DNS service
+    nameservers = [
+      "1.1.1.1"
+      "1.0.0.1"
+    ];
+
     firewall = {
       enable = true;
       allowedTCPPorts = [
@@ -82,28 +88,28 @@ in {
       ];
     };
 
-    wg-quick.interfaces = {
-      wg0 = {
-        address = [
-          "10.10.10.4/24"
-        ];
-        dns = ["10.10.10.1"];
-        privateKeyFile = "/root/wg_agrivpn_hyrule";
-        peers = [
-          {
-            # peer's public key
-            publicKey = "iZ4aqYjbT8O8tfUHEuV+yWLtdoQbdBb6Nt0M4usMSiY=";
+    # wg-quick.interfaces = {
+    #   wg0 = {
+    #     address = [
+    #       "10.10.10.4/24"
+    #     ];
+    #     dns = ["10.10.10.1"];
+    #     privateKeyFile = "/root/wg_agrivpn_hyrule";
+    #     peers = [
+    #       {
+    #         # peer's public key
+    #         publicKey = "iZ4aqYjbT8O8tfUHEuV+yWLtdoQbdBb6Nt0M4usMSiY=";
 
-            # choose which traffic to forward
-            allowedIPs = [
-              "10.0.51.0/24"
-              "10.10.10.0/24"
-            ];
-            endpoint = "150.242.34.33:54231";
-          }
-        ];
-      };
-    };
+    #         # choose which traffic to forward
+    #         allowedIPs = [
+    #           "10.0.51.0/24"
+    #           "10.10.10.0/24"
+    #         ];
+    #         endpoint = "150.242.34.33:54231";
+    #       }
+    #     ];
+    #   };
+    # };
   };
 
   users = {

hosts/hyrule/services/forgejo.nix

@@ -18,8 +18,8 @@
       server = {
         # ENABLE_ACME = true;
         # ACME_EMAIL = "eclarkboman@gmail.com"; # change this to "me@imbored.dev"
-        DOMAIN = "forge.imbored.dev"; # should this be "imbored.dev"?
-        ROOT_URL = "https://forge.imbored.dev"; # full public URL of the Forgejo server
+        DOMAIN = "dobutterfliescry.net"; # should this be "imbored.dev"?
+        ROOT_URL = "https://forge.dobutterfliescry.net"; # full public URL of the Forgejo server
         # address and port to listen on
         HTTP_ADDR = "127.0.0.1";
         HTTP_PORT = 3000;

hosts/hyrule/services/nginx.nix

@@ -76,6 +76,7 @@
       "vault.imbored.dev" = vault;
       # Route "forge" subdomain to forgejo
       # TODO: use `forgejo.settings.server.ENABLE_ACME` instead?
+      # "tearforge.net" = forge;
       "forge.dobutterfliescry.net" = forge;
     };
   };