From b3f164d3c78d00411a3b186f64dd8720d97a42c1 Mon Sep 17 00:00:00 2001
From: Aaron Bieber <aaron@bolddaemon.com>
Date: Fri, 23 Aug 2024 08:15:53 -0600
Subject: [PATCH] configs/tailnet: add entries and what not for tsns

---
 configs/tailnet.nix | 12 ++++++++++++
 1 file changed, 12 insertions(+)

diff --git a/configs/tailnet.nix b/configs/tailnet.nix
index 2611c8a..d203c14 100644
--- a/configs/tailnet.nix
+++ b/configs/tailnet.nix
@@ -26,6 +26,7 @@ let
           display = "100.77.35.34";
           rimgo = "100.121.77.91";
           invidious = "100.71.57.99";
+          tsns = "100.103.1.111";
         };
 
         tagOwners = {
@@ -42,6 +43,12 @@ let
         };
 
         acls = [
+          {
+            action = "accept";
+            src = [ "*" ];
+            dst = [ "tsns:53" ];
+            proto = "udp";
+          }
           {
             # Allow laptops and mobile devices to ssh to everything
             action = "accept";
@@ -110,6 +117,11 @@ let
         ];
 
         tests = [
+          {
+            src = "gitle";
+            allow = [ "tsns:53" ];
+            proto = "udp";
+          }
           {
             # RO service can't access things
             "src" = "tag:ro-service";