tulg/nixdots
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

global/zapret

Browse source
This commit is contained in:
tulg 2026-01-16 17:36:16 +03:00
parent f0eea71c6b
commit 1c26b5b65f
4 changed files with 23 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

5
modules/nixos/common.nix
View file

@ -5,10 +5,15 @@
virtiofsd virtiofsd
linux-pam linux-pam
lm_sensors lm_sensors
wireguard-tools
iproute2
util-linux
]; ];
nixpkgs.config.allowUnfree = true; nixpkgs.config.allowUnfree = true;
nix.settings.experimental-features = ["nix-command" "flakes"]; nix.settings.experimental-features = ["nix-command" "flakes"];
time.timeZone = "Europe/Istanbul"; time.timeZone = "Europe/Istanbul";
zramSwap.enable = true; zramSwap.enable = true;
programs.localsend.enable = true; programs.localsend.enable = true;
networking.networkmanager.enable = true;
} }

2
modules/nixos/networking/default.nix
View file

@ -8,6 +8,6 @@
imports = [ imports = [
./bluetooth.nix ./bluetooth.nix
./ssh.nix ./ssh.nix
./zapret.nix #./zapret.nix zapret decided to kill itself among all the devices caused so much problems, i just use tailscale exit node for the time being until i decide to fix this fucking shitass tool
]; ];
} }

23
modules/nixos/networking/zapret.nix
View file

@ -1,6 +1,6 @@
{ {
services.dnscrypt-proxy = { services.dnscrypt-proxy = {
enable = true; enable = false;
settings = { settings = {
listen_addresses = [ listen_addresses = [
@ -29,23 +29,32 @@
}; };
services.zapret = { services.zapret = {
enable = true; enable = false;
params = [ params = [
"--dpi-desync=fake" # "--dpi-desync=fake"
"--dpi-desync-ttl=8" # "--dpi-desync-ttl=8"
"--filter-tcp=443 --dpi-desync=fake --dpi-desync-ttl=1 --dpi-desync-fooling=badsum "
"--filter-udp=443 --dpi-desync=fake --dpi-desync-ttl=1 --dpi-desync-fooling=badsum --new "
"--filter-tcp=443 --hostlist=/opt/zapret/ipset/zapret-hosts-user.txt --dpi-desync=fake --dpi-desync-ttl=1 --dpi-desync-fooling=badsum "
"--filter-udp=443 --hostlist=/opt/zapret/ipset/zapret-hosts-user.txt --dpi-desync=fake --dpi-desync-ttl=1 --dpi-desync-fooling=badsum "
]; ];
}; };
networking = { networking = {
networkmanager = { networkmanager = {
enable = true; enable = true;
dns = "none"; extraConfig = ''
[connectivity]
uri=http://connectivitycheck.gstatic.com/generate_204
interval=0
'';
#dns = "none";
}; };
nameservers = [ nameservers = [
"127.0.0.1" # "127.0.0.1"
"::1" # "::1"
]; ];
}; };
} }

1
modules/nixos/services.nix
View file

@ -12,6 +12,7 @@
services.tailscale = { services.tailscale = {
enable = true; enable = true;
useRoutingFeatures = "both"; useRoutingFeatures = "both";
interfaceName = "userspace-networking";
}; };
programs.thunar.plugins = with pkgs; [ programs.thunar.plugins = with pkgs; [