nix: update input julm-nix

[sourcephile-nix.git] / hosts / mermet / acme / autogeree.net.nix

diff --git a/hosts/mermet/acme/autogeree.net.nix b/hosts/mermet/acme/autogeree.net.nix
index 149c828f29415d32dda581908a68517940171356..3b765bbbfea9b5778f86a496f568c2c90e05b5da 100644 (file)
--- a/hosts/mermet/acme/autogeree.net.nix
+++ b/hosts/mermet/acme/autogeree.net.nix
@@ -1,4 +1,4 @@
-{ pkgs, config, ... }:
+{ pkgs, config, info, ... }:
 let
   domain = "autogeree.net";
   inherit (config.users) groups;
@@ -8,11 +8,15 @@ in
     table inet filter {
       set output-net-lego-ipv4 {
         type ipv4_addr
-        elements = { 217.70.177.40 }
+        elements = {
+          ${info.gandi.dns.secondary.ns.ipv4}
+        }
       }
       set output-net-lego-ipv6 {
         type ipv6_addr
-        elements = { 2001:4b98:d:1::40 }
+        elements = {
+          ${info.gandi.dns.secondary.ns.ipv6}
+        }
       }
     }
   '';
@@ -27,7 +31,7 @@ in
     group = groups."acme".name;
     keyType = "rsa4096";
     dnsProvider = "rfc2136";
-    dnsPropagationCheck = false;
+    #dnsPropagationCheck = false;
     credentialsFile = pkgs.writeText "credentials" ''
       RFC2136_NAMESERVER=127.0.0.1:5353
       RFC2136_PROPAGATION_TIMEOUT=1000