From 09000f37481a07218bd99fc734de79cf88fc4bad Mon Sep 17 00:00:00 2001
From: zuckerberg <5-zuckerberg@users.noreply.git.neet.dev>
Date: Mon, 15 Nov 2021 09:25:53 -0500
Subject: [PATCH] enable iodine

---
 machines/liza/configuration.nix | 20 ++++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/machines/liza/configuration.nix b/machines/liza/configuration.nix
index fa5622b..aaab248 100644
--- a/machines/liza/configuration.nix
+++ b/machines/liza/configuration.nix
@@ -282,19 +282,19 @@ in {
   };
 
   # iodine DNS-based vpn
-  #services.iodine.server = {
-  #  enable = true;
-  #  ip = "192.168.99.1";
-  #  domain = "tun.neet.dev";
-  #  passwordFile = "/run/secrets/iodine";
-  #};
-  #age.secrets.iodine.file = ../../secrets/iodine.age;
-  #networking.firewall.allowedUDPPorts = [ 53 ];
+  services.iodine.server = {
+    enable = true;
+    ip = "192.168.99.1";
+    domain = "tun.neet.dev";
+    passwordFile = "/run/secrets/iodine";
+  };
+  age.secrets.iodine.file = ../../secrets/iodine.age;
+  networking.firewall.allowedUDPPorts = [ 53 ];
 
-  #boot.kernel.sysctl."net.ipv4.ip_forward" = 1;
+  boot.kernel.sysctl."net.ipv4.ip_forward" = 1;
   networking.nat.enable = true;
   networking.nat.internalInterfaces = [
-  #  "dns0" # iodine
+    "dns0" # iodine
     "ve-vpn-continer" # vpn container
   ];
   networking.nat.externalInterface = "enp1s0";