oqyude/nixos
1
0
Fork 0
mirror of https://github.com/oqyude/nixos.git synced 2026-06-11 04:30:41 +03:00
Code Issues Packages Projects Releases Wiki Activity

123

Browse Source
This commit is contained in:
Jor Oqyude
2025-10-01 11:58:01 +03:00
parent f563ab1216
commit 0f2fb9246e
7 changed files with 21 additions and 149 deletions
Download Patch File Download Diff File Expand all files Collapse all files
nixosConfigurations/hosts/server.nix
+1 -1
View File
@@ -67,7 +67,7 @@ let
}; };
systemd.tmpfiles.rules = [ systemd.tmpfiles.rules = [
"z /mnt/services 0755 root root -" "z ${xlib.dirs.services-mnt-folder} 0755 root root -"
]; ];
services = { services = {
nixosModules/server/cloudflared.nix
-72
View File
@@ -1,72 +0,0 @@
{
config,
lib,
pkgs,
xlib,
...
}:
{
services = {
cloudflared = {
enable = false;
certificateFile = "${xlib.dirs.server-credentials}/cloudflared/cert.pem";
tunnels = {
"58b340ee-e98a-4af9-b786-74600c71f49e" = {
credentialsFile = "${xlib.dirs.server-credentials}/cloudflared/server.json";
warp-routing.enabled = true;
ingress = {
"immich.zeroq.ru" = {
service = "http://localhost:2283";
};
"nextcloud.zeroq.ru" = {
service = "http://localhost:10000";
};
};
default = "http_status:404";
};
# "58b340ee-e98a-4af9-b786-74600c71f49e" = {
# credentialsFile = "${xlib.dirs.server-credentials}/cloudflared/server.json";
# warp-routing.enabled = true;
# ingress = {
# "nextcloud.zeroq.ru" = {
# service = "http://localhost:10000";
# };
# };
# default = "http_status:404";
# };
};
};
};
# users.users = {
# cloudflared = {
# group = "cloudflared";
# isSystemUser = true;
# };
# };
# users.groups.cloudflared = { };
#
# systemd.services.cloudflared = {
# after = [
# "network.target"
# "network-online.target"
# ];
# wants = [
# "network.target"
# "network-online.target"
# ];
# wantedBy = [ "multi-user.target" ];
# serviceConfig = {
# ExecStart = "${pkgs.cloudflared}/bin/cloudflared tunnel --no-autoupdate --config=${xlib.dirs.server-credentials}/cloudflared/config.yaml --origincert=${xlib.dirs.server-credentials}/cloudflared/cert.pem --credentials-file=${xlib.dirs.server-credentials}/cloudflared/server.json run";
# Group = "root";
# User = "root";
# Restart = "on-failure";
# };
# };
environment = {
systemPackages = with pkgs; [
cloudflared
];
};
}
nixosModules/server/default.nix
-1
View File
@@ -21,6 +21,5 @@
# ./open-webui.nix # ./open-webui.nix
# ./trilium.nix # ./trilium.nix
# ./zerotier.nix # ./zerotier.nix
#./cloudflared.nix
]; ];
} }
nixosModules/services/node-red.nix
+7
View File
@@ -8,5 +8,12 @@
{ {
services.node-red = { services.node-red = {
enable = true; enable = true;
port = 1880;
openFirewall = true;
userDir = "${xlib.dirs.services-mnt-folder}/node-red";
}; };
systemd.tmpfiles.rules = [
"z ${xlib.dirs.services-mnt-folder}/node-red 0750 node-red node-red -"
];
} }
nixosModules/vds/cloudflared.nix
-74
View File
@@ -1,74 +0,0 @@
{
config,
pkgs,
inputs,
...
}:
{
services = {
cloudflared = {
enable = false;
certificateFile = "${inputs.zeroq-credentials}/services/cloudflared/cert.pem";
tunnels = {
"58b340ee-e98a-4af9-b786-74600c71f49e" = {
credentialsFile = "${inputs.zeroq-credentials}/services/cloudflared/server.json";
warp-routing.enabled = true;
ingress = {
"immich.zeroq.ru" = {
service = "http://sapphira.latxa-platy.ts.net:2283";
};
"nextcloud.zeroq.ru" = {
service = "http://sapphira.latxa-platy.ts.net:10000";
};
"llm.zeroq.ru" = {
service = "http://atoridu.latxa-platy.ts.net:11111";
};
};
default = "http_status:404";
};
# "58b340ee-e98a-4af9-b786-74600c71f49e" = {
# credentialsFile = "${inputs.zeroq.dirs.server-credentials}/cloudflared/server.json";
# warp-routing.enabled = true;
# ingress = {
# "nextcloud.zeroq.ru" = {
# service = "http://localhost:10000";
# };
# };
# default = "http_status:404";
# };
};
};
};
# users.users = {
# cloudflared = {
# group = "cloudflared";
# isSystemUser = true;
# };
# };
# users.groups.cloudflared = { };
#
# systemd.services.cloudflared = {
# after = [
# "network.target"
# "network-online.target"
# ];
# wants = [
# "network.target"
# "network-online.target"
# ];
# wantedBy = [ "multi-user.target" ];
# serviceConfig = {
# ExecStart = "${pkgs.cloudflared}/bin/cloudflared tunnel --no-autoupdate --config=${inputs.zeroq.dirs.server-credentials}/cloudflared/config.yaml --origincert=${inputs.zeroq.dirs.server-credentials}/cloudflared/cert.pem --credentials-file=${inputs.zeroq.dirs.server-credentials}/cloudflared/server.json run";
# Group = "root";
# User = "root";
# Restart = "on-failure";
# };
# };
environment = {
systemPackages = with pkgs; [
cloudflared
];
};
}
nixosModules/vds/default.nix
+1 -1
View File
@@ -5,7 +5,7 @@
{ {
imports = [ imports = [
./docker.nix ./docker.nix
./netbird.nix # ./netbird.nix
./nginx.nix ./nginx.nix
./xray.nix ./xray.nix
]; ];
nixosModules/vds/nginx.nix
+12
View File
@@ -16,6 +16,18 @@ in
recommendedProxySettings = true; recommendedProxySettings = true;
recommendedTlsSettings = true; recommendedTlsSettings = true;
virtualHosts = { virtualHosts = {
"node-red.zeroq.ru" = {
forceSSL = true;
enableACME = true;
kTLS = true;
locations."/" = {
proxyPass = "http://${server}:1880";
proxyWebsockets = true;
};
extraConfig = ''
client_max_body_size 5G;
'';
};
"flux.zeroq.ru" = { "flux.zeroq.ru" = {
forceSSL = true; forceSSL = true;
enableACME = true; enableACME = true;