feat(oksys): use blocky instead of pihole

devices/oksys/default.nix

@@ -4,9 +4,9 @@
 
     ../../modules/tailscale.nix
 
+    ./modules/blocky.nix
     ./modules/caddy.nix
     ./modules/headscale.nix
-    ./modules/pihole.nix
     ./modules/unbound.nix
   ];
 

devices/oksys/modules/blocky.nix

@@ -0,0 +1,23 @@
+{...}: {
+  services = {
+    blocky = {
+      enable = true;
+      settings = {
+        upstream = {
+          default = [
+            "127.0.0.1:5335"
+            "127.0.0.1:5335"
+          ];
+        };
+
+        blocking = {
+          blackLists = {
+            ads = [
+              "https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts"
+            ];
+          };
+        };
+      };
+    };
+  };
+}

devices/oksys/modules/pihole.nix

@@ -1,39 +0,0 @@
-{pihole, ...}: {
-  imports = [pihole.nixosModules.default];
-
-  services.pihole = {
-    enable = true;
-
-    dnsPort = 53;
-    webPort = 8080;
-
-    piholeConfig = {
-      ftl = {
-        # Defaults
-        PRIVACYLEVEL = "0";
-        RATE_LIMIT = "1000/60";
-      };
-
-      interface = "tailscale0";
-
-      web = {
-        theme = "default-darker";
-        virtualHost = "pi.hole";
-        password = "password";
-      };
-
-      # Declaratively set the DNS settings
-      # in Settings -> DNS -> Interface settings
-      dnsmasq.extraConfig = ''
-        interface=tailscale0
-        except-interface=nonexisting
-      '';
-
-      # Handle it with unbound
-      dns.upstreamServers = [
-        "127.0.0.1#5335"
-        "127.0.0.1#5335"
-      ];
-    };
-  };
-}