BeiNacht/nixos-config
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

some adjustments

Browse Source
This commit is contained in:
Alexander Szczepanski
2021-11-08 14:23:12 +01:00
parent 944acf586f
commit 2bdb4244b3
14 changed files with 215 additions and 225 deletions
Download Patch File Download Diff File Expand all files Collapse all files

39
machine/vps.nix
View File

@ -4,7 +4,7 @@ let
in
{
imports =
[ # Include the results of the hardware scan.
[
/etc/nixos/hardware-configuration.nix
../configs/common.nix
../configs/docker.nix
@ -38,11 +38,12 @@ in
publicKey = secrets.wireguard-desktop-public;
presharedKey = secrets.wireguard-preshared;
allowedIPs = [ "10.100.0.2/32" ];
}{
publicKey = secrets.wireguard-mini-public;
presharedKey = secrets.wireguard-preshared;
allowedIPs = [ "10.100.0.3/32" ];
}];
}
{
publicKey = secrets.wireguard-mini-public;
presharedKey = secrets.wireguard-preshared;
allowedIPs = [ "10.100.0.3/32" ];
}];
};
};
@ -57,10 +58,6 @@ in
};
};
# List packages installed in system profile. To search, run:
environment.systemPackages = with pkgs; [
];
programs.mtr.enable = true;
security.acme.email = "webmaster@szczepan.ski";
@ -91,10 +88,10 @@ in
'';
};
"/.well-known/carddav" = {
return = "301 $scheme://$host/remote.php/dav";
return = "301 $scheme://$host/remote.php/dav";
};
"/.well-known/caldav" = {
return = "301 $scheme://$host/remote.php/dav";
return = "301 $scheme://$host/remote.php/dav";
};
};
};
@ -114,17 +111,17 @@ in
enable = true;
jails.DEFAULT =
''
bantime = 7d
'';
''
bantime = 7d
'';
jails.sshd =
''
filter = sshd
maxretry = 4
action = iptables[name=ssh, port=ssh, protocol=tcp]
enabled = true
'';
''
filter = sshd
maxretry = 4
action = iptables[name=ssh, port=ssh, protocol=tcp]
enabled = true
'';
};
# Limit stack size to reduce memory usage