jakalx/nixos-config
1
1
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Add nginx

Browse source
This commit is contained in:
Alexander Kobjolke 2021-07-12 17:17:09 +00:00
parent 1e9231279d
commit f9bae66f71
1 changed files with 22 additions and 19 deletions
Download patch file Download diff file Expand all files Collapse all files

41
thrall/configuration.nix
View file

@ -29,7 +29,7 @@
# networking.wireless.enable = true; # Enables wireless support via wpa_supplicant. # networking.wireless.enable = true; # Enables wireless support via wpa_supplicant.
# Set your time zone. # Set your time zone.
# time.timeZone = "Europe/Amsterdam"; time.timeZone = "Europe/Berlin";
# The global useDHCP flag is deprecated, therefore explicitly set to false here. # The global useDHCP flag is deprecated, therefore explicitly set to false here.
# Per-interface useDHCP will be mandatory in the future, so this generated config # Per-interface useDHCP will be mandatory in the future, so this generated config
@ -47,7 +47,7 @@
defaultGateway = "195.90.208.1"; defaultGateway = "195.90.208.1";
nameservers = [ "1.1.1.1" "8.8.8.8" ]; nameservers = [ "1.1.1.1" "8.8.8.8" ];
firewall = { firewall = {
allowedTCPPorts = [ 22 ]; allowedTCPPorts = [ 22 80 443 ];
allowedUDPPorts = [ ]; allowedUDPPorts = [ ];
}; };
}; };
@ -56,6 +56,11 @@
# networking.proxy.default = "http://user:password@proxy:port/"; # networking.proxy.default = "http://user:password@proxy:port/";
# networking.proxy.noProxy = "127.0.0.1,localhost,internal.domain"; # networking.proxy.noProxy = "127.0.0.1,localhost,internal.domain";
security.acme = {
acceptTerms = true;
email = "alex@jakalx.net";
};
# Select internationalisation properties. # Select internationalisation properties.
i18n.defaultLocale = "en_US.UTF-8"; i18n.defaultLocale = "en_US.UTF-8";
console = { console = {
@ -63,23 +68,6 @@
keyMap = "us"; keyMap = "us";
}; };
# Enable the X11 windowing system.
# services.xserver.enable = true;
# Configure keymap in X11
# services.xserver.layout = "us";
# services.xserver.xkbOptions = "eurosign:e";
# Enable CUPS to print documents.
# services.printing.enable = true;
# Enable sound.
# sound.enable = true;
# hardware.pulseaudio.enable = true;
# Enable touchpad support (enabled default in most desktopManager).
# services.xserver.libinput.enable = true;
# Define a user account. Don't forget to set a password with passwd. # Define a user account. Don't forget to set a password with passwd.
users.users.alex = { users.users.alex = {
isNormalUser = true; isNormalUser = true;
@ -121,6 +109,21 @@
# Enable the OpenSSH daemon. # Enable the OpenSSH daemon.
services.openssh.enable = true; services.openssh.enable = true;
services.nginx.enable = true;
services.nginx = {
recommendedTlsSettings = true;
recommendedOptimisation = true;
recommendedGzipSettings = true;
recommendedProxySettings = true;
};
services.nginx.virtualHosts = {
"www.failco.de" = {
forceSSL = true;
enableACME = true;
root = "/var/www/blog";
};
};
# Open ports in the firewall. # Open ports in the firewall.
# networking.firewall.allowedTCPPorts = [ ... ]; # networking.firewall.allowedTCPPorts = [ ... ];
# networking.firewall.allowedUDPPorts = [ ... ]; # networking.firewall.allowedUDPPorts = [ ... ];