configurations of hq services
https://hydra.hq.c3d2.de/jobset/c3d2/nix-config#tabs-jobs
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
56 lines
1.4 KiB
56 lines
1.4 KiB
# Edit this configuration file to define what should be installed on |
|
# your system. Help is available in the configuration.nix(5) man page |
|
# and in the NixOS manual (accessible by running ‘nixos-help’). |
|
|
|
{ config, pkgs, lib, ... }: |
|
|
|
{ |
|
imports = |
|
[ <nixpkgs/nixos/modules/profiles/minimal.nix> |
|
./proxy.nix |
|
]; |
|
nix.useSandbox = false; |
|
nix.maxJobs = lib.mkDefault 2; |
|
nix.buildCores = lib.mkDefault 16; |
|
|
|
boot.isContainer = true; |
|
# /sbin/init |
|
boot.loader.initScript.enable = true; |
|
boot.loader.grub.enable = false; |
|
|
|
fileSystems."/" = { fsType = "rootfs"; device = "rootfs"; }; |
|
|
|
networking.hostName = "public-access-proxy"; |
|
networking.defaultGateway = { address = "172.22.99.4"; interface = "eth0"; }; |
|
|
|
# Set your time zone. |
|
time.timeZone = "Europe/Berlin"; |
|
|
|
services.openssh = { |
|
enable = true; |
|
permitRootLogin = "yes"; |
|
ports = [ 1122 ]; |
|
}; |
|
|
|
my.services.proxy = { |
|
enable = true; |
|
proxyHosts = [ |
|
{ |
|
hostNames = [ "c3d2.arkom.men" ]; |
|
proxyTo = { host = "80.153.192.57"; httpPort = 80; httpsPort = 443; }; |
|
} |
|
{ |
|
hostNames = [ "cloud.bombenverleih.de" "arkom.men" "kl.arkom.men" "cloud.arkom.men" ]; |
|
proxyTo = { host = "fe80::461e:a1ff:fe59:2ee8"; httpPort = 80; httpsPort = 443; }; |
|
} |
|
]; |
|
}; |
|
|
|
networking.firewall.allowedTCPPorts = [ |
|
80 |
|
443 |
|
]; |
|
|
|
system.stateVersion = "18.09"; # Did you read the comment? |
|
|
|
}
|
|
|