clerie/nixfiles
1
0
Fork 0
Code

hosts/porter: add scholl service proxy

Browse Source
This commit is contained in:
clerie 2022-12-05 20:45:00 +01:00
parent 607fdde5fd
commit 91e6a42ea3
1 changed files with 23 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
hosts/porter/configuration.nix
View File

@ -23,15 +23,29 @@
networking.nameservers = [ "46.38.255.230" "46.38.252.230" ]; networking.nameservers = [ "46.38.255.230" "46.38.252.230" ];
services.nginx.enable = true; services.nginx.enable = true;
services.nginx.virtualHosts = { services.nginx.virtualHosts.default = lib.mkForce {};
"chisel.clerie.de" = { services.nginx.virtualHosts."*.schule.clerie.de" = {
enableACME = true;
addSSL = true;
locations."/" = { locations."/" = {
proxyPass = "http://[::1]:3765"; proxyPass = "http://schule.net.clerie.de";
proxyWebsockets = true;
}; };
}; };
services.sniproxy = {
enable = true;
config = ''
error_log {
filename /var/log/sniproxy/error.log
}
access_log {
filename /var/log/sniproxy/access.log
}
listen 443 {
proto tls
}
table {
^.*\.schule\.clerie\.de$ [2001:638:904:ffcb::d]
}
'';
}; };
clerie.nginx-port-forward = { clerie.nginx-port-forward = {
@ -43,7 +57,7 @@
}; };
services.chisel-server = { services.chisel-server = {
enable = true; enable = false;
host = "[::1]"; host = "[::1]";
port = 3765; port = 3765;
authfile = "/var/src/secrets/chisel/users.json"; authfile = "/var/src/secrets/chisel/users.json";