From fa060e74d86cc7407d83e29bb6982980ddb0c6ce Mon Sep 17 00:00:00 2001
From: Tommy <contact@tommytran.io>
Date: Wed, 4 Jun 2025 17:04:52 -0700
Subject: [PATCH] Full removal of systemd-resolved

Signed-off-by: Tommy <contact@tommytran.io>
---
 etc/docker/daemon-metropolis-nexus.json | 3 +--
 x86-metropolis-nexus.yml                | 4 +++-
 x86-unbound.yml                         | 1 +
 3 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/etc/docker/daemon-metropolis-nexus.json b/etc/docker/daemon-metropolis-nexus.json
index 2a6b065..1ae4d0a 100644
--- a/etc/docker/daemon-metropolis-nexus.json
+++ b/etc/docker/daemon-metropolis-nexus.json
@@ -16,6 +16,5 @@
                 "--host-uds=open"
             ]
         }
-    },
-    "dns" : [ "192.168.1.1" ]
+    }
 }
\ No newline at end of file
diff --git a/x86-metropolis-nexus.yml b/x86-metropolis-nexus.yml
index 0d6ccc5..ebeb820 100644
--- a/x86-metropolis-nexus.yml
+++ b/x86-metropolis-nexus.yml
@@ -46,9 +46,11 @@ systemd:
         ExecStart=/usr/sbin/setsebool -P container_use_cephfs off
         ExecStart=/usr/sbin/setsebool -P virt_use_nfs off
         ExecStart=/usr/sbin/setsebool -P virt_use_samba off
-        ExecStart=/usr/bin/rpm-ostree override remove containerd docker-cli dnsmasq google-compute-engine-guest-configs-udev iptables-legacy iptables-legacy-libs moby-engine runc
+        ExecStart=/usr/bin/rpm-ostree override remove containerd docker-cli dnsmasq google-compute-engine-guest-configs-udev iptables-legacy iptables-legacy-libs moby-engine runc systemd-resolved
         ExecStart=/usr/bin/rpm-ostree install docker-ce docker-compose-plugin hardened_malloc qemu-guest-agent tuned
         ExecStart=/usr/bin/sed -i 's/\s+nullok//g' /etc/pam.d/system-auth
+        ExecStart=/usr/bin/systemctl disable systemd-resolved
+        ExecStart=/usr/bin/rm /etc/resolv.conf
         ExecStart=/usr/bin/touch /var/lib/%N.stamp
         ExecStart=/usr/bin/echo 'libhardened_malloc.so' > /etc/ld.so.preload
         ExecStart=/usr/bin/systemctl --no-block reboot
diff --git a/x86-unbound.yml b/x86-unbound.yml
index adccd75..e0e25ec 100644
--- a/x86-unbound.yml
+++ b/x86-unbound.yml
@@ -50,6 +50,7 @@ systemd:
         ExecStart=/usr/bin/rpm-ostree install docker-ce docker-compose-plugin firewalld hardened_malloc qemu-guest-agent tuned unbound
         ExecStart=/usr/bin/sed -i 's/\s+nullok//g' /etc/pam.d/system-auth
         ExecStart=/usr/bin/systemctl disable systemd-resolved
+        ExecStart=/usr/bin/rm /etc/resolv.conf
         ExecStart=/usr/bin/touch /var/lib/%N.stamp
         ExecStart=/usr/bin/systemctl --no-block reboot