Merge pull request 'master' (#85) from leon/nix-config:master into master
Reviewed-on: #85
This commit is contained in:
commit
e2aaafa1aa
|
@ -36,7 +36,7 @@
|
||||||
volumes = [ {
|
volumes = [ {
|
||||||
image = "nix-store-overlay.img";
|
image = "nix-store-overlay.img";
|
||||||
mountPoint = config.microvm.writableStoreOverlay;
|
mountPoint = config.microvm.writableStoreOverlay;
|
||||||
size = 3048;
|
size = 5048;
|
||||||
} ];
|
} ];
|
||||||
};
|
};
|
||||||
nix.settings.auto-optimise-store = lib.mkForce false;
|
nix.settings.auto-optimise-store = lib.mkForce false;
|
||||||
|
@ -84,7 +84,10 @@
|
||||||
allowedTCPPorts = [ 5000 22 53 80 8080 ];
|
allowedTCPPorts = [ 5000 22 53 80 8080 ];
|
||||||
allowedUDPPorts = [ 5000 22 53 80 8080 18900 19900 ];
|
allowedUDPPorts = [ 5000 22 53 80 8080 18900 19900 ];
|
||||||
};
|
};
|
||||||
|
|
||||||
|
#networking.firewall.extraCommands = ''
|
||||||
|
# iptables
|
||||||
|
# '';
|
||||||
#_______________________________Begin-VPN1-Server____________________________________
|
#_______________________________Begin-VPN1-Server____________________________________
|
||||||
|
|
||||||
networking.wireguard.interfaces = {
|
networking.wireguard.interfaces = {
|
||||||
|
@ -219,20 +222,25 @@ networking.wireguard.interfaces = {
|
||||||
|
|
||||||
#-----------------------------ngin-X--------------------------------
|
#-----------------------------ngin-X--------------------------------
|
||||||
|
|
||||||
# services.nginx = {
|
services.nginx = {
|
||||||
# listen 80;
|
listen 80;
|
||||||
# enable = true;
|
enable = true;
|
||||||
# virtualHosts."bicospacetech.c3d2.de" = {
|
virtualHosts."bicospacetech.c3d2.de" = {
|
||||||
# default = true;
|
default = true;
|
||||||
# forceSSL = true;
|
forceSSL = true;
|
||||||
# enableACME = true;
|
enableACME = true;
|
||||||
# locations."/login" = {
|
locations."/login" = {
|
||||||
# proxyPass = "http://10.10.11.1:80";
|
proxyPass = "http://10.10.11.1:80";
|
||||||
# proxyWebsockets = true;
|
proxyWebsockets = true;
|
||||||
# };
|
};
|
||||||
# };
|
};
|
||||||
|
|
||||||
#-----------------------------ngin-X--------------------------------
|
#-----------------------------ngin-X--------------------------------
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
#--------------------------Up-Stream--------------------------------
|
||||||
|
|
||||||
|
|
||||||
system.stateVersion = "22.05";
|
system.stateVersion = "22.05";
|
||||||
}
|
}
|
||||||
|
|
|
@ -56,8 +56,6 @@
|
||||||
|
|
||||||
|
|
||||||
# enable IP routing
|
# enable IP routing
|
||||||
boot.kernel.sysctl."net.ipv4.conf.all.forwarding" = 1;
|
|
||||||
boot.kernel.sysctl."net.ipv4.conf.default.forwarding" = 1;
|
|
||||||
|
|
||||||
networking.firewall = {
|
networking.firewall = {
|
||||||
allowedTCPPorts = [ 80 443 22 53 14000 14500 15000 ];
|
allowedTCPPorts = [ 80 443 22 53 14000 14500 15000 ];
|
||||||
|
|
Loading…
Reference in New Issue