57 lines
1.1 KiB
Nix
57 lines
1.1 KiB
Nix
{
|
|
config,
|
|
lib,
|
|
pkgs,
|
|
...
|
|
}:
|
|
let
|
|
keys = [
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINABEf0jBjtDdezDDtvl1v27l0DbHP2XUgMARTZXC+MR goeranh@node5"
|
|
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDmYHNdtPmQqvNINEWJgqEojrye+wQKr0S0VwlGv7xUa goeranh@node7"
|
|
];
|
|
|
|
in
|
|
{
|
|
imports = [
|
|
./hardware-configuration.nix
|
|
./authentik.nix
|
|
];
|
|
|
|
networking.hostName = "mail";
|
|
networking.extraHosts = ''
|
|
127.0.0.1 auth.test.htw.stura-dresden.de
|
|
'';
|
|
networking.interfaces.ens18.ipv4.addresses = [
|
|
{
|
|
address = "167.235.225.23";
|
|
prefixLength = 32;
|
|
}
|
|
];
|
|
|
|
networking.interfaces.ens18.ipv6.addresses = [
|
|
{
|
|
address = "2a01:4f8:c012:6bd7::1";
|
|
prefixLength = 32;
|
|
}
|
|
];
|
|
networking.defaultGateway.address = "172.31.1.1";
|
|
networking.nameservers = [
|
|
"9.9.9.9"
|
|
"1.1.1.1"
|
|
];
|
|
|
|
services.nginx.virtualHosts."lists.${config.networking.domain}" = {
|
|
enableACME = true;
|
|
forceSSL = true;
|
|
# locations."/" = {
|
|
# proxyPass = "http://127.0.0.1:18507";
|
|
# };
|
|
};
|
|
|
|
networking.firewall.allowedTCPPorts = [
|
|
80
|
|
443
|
|
];
|
|
|
|
system.stateVersion = "25.05";
|
|
}
|