From 40648d4041f92e8950b0adae117cc986cffc6e0e Mon Sep 17 00:00:00 2001 From: Hadi <112569860+anotherhadi@users.noreply.github.com> Date: Tue, 18 Jun 2024 11:26:35 +0200 Subject: [PATCH] temp --- hosts/modules/server/adguard.nix | 4 +++- hosts/modules/server/cloudflare-dyndns.nix | 1 + hosts/modules/server/homepage/default.nix | 2 +- hosts/modules/server/nextcloud.nix | 1 + hosts/modules/server/nginx.nix | 1 + hosts/modules/server/ntfy-sh.nix | 3 ++- hosts/modules/server/openssh.nix | 1 + hosts/modules/server/security.nix | 1 + hosts/modules/server/unifi.nix | 3 ++- hosts/modules/server/vaultwarden.nix | 1 + 10 files changed, 14 insertions(+), 4 deletions(-) diff --git a/hosts/modules/server/adguard.nix b/hosts/modules/server/adguard.nix index 588c9b2..120d52d 100644 --- a/hosts/modules/server/adguard.nix +++ b/hosts/modules/server/adguard.nix @@ -1,8 +1,10 @@ +# Network-wide ads & trackers blocking DNS server +# Change your router primary DNS server to {this server IP} to make it network wide. { services.adguardhome ={ enable = true; host = "0.0.0.0"; port = 3000; - openFirewall = true; + openFirewall = true; # Open port 53(dns) & 3000(webui) }; } \ No newline at end of file diff --git a/hosts/modules/server/cloudflare-dyndns.nix b/hosts/modules/server/cloudflare-dyndns.nix index b66d09f..7bafac5 100644 --- a/hosts/modules/server/cloudflare-dyndns.nix +++ b/hosts/modules/server/cloudflare-dyndns.nix @@ -1,3 +1,4 @@ +# CloudFlare Dynamic DNS client { services.cloudflare-dyndns = { enable = true; diff --git a/hosts/modules/server/homepage/default.nix b/hosts/modules/server/homepage/default.nix index bea8a60..e1879ed 100644 --- a/hosts/modules/server/homepage/default.nix +++ b/hosts/modules/server/homepage/default.nix @@ -25,7 +25,7 @@ let ''; in { - ."startpage/index.html".text = '' + # fix "startpage/index.html".text = '' diff --git a/hosts/modules/server/nextcloud.nix b/hosts/modules/server/nextcloud.nix index 67ffc83..b0522f4 100644 --- a/hosts/modules/server/nextcloud.nix +++ b/hosts/modules/server/nextcloud.nix @@ -1,3 +1,4 @@ +# Nextcloud { pkgs, ... }: let hostname = "cloud.anotherhadi.com"; diff --git a/hosts/modules/server/nginx.nix b/hosts/modules/server/nginx.nix index f7401a0..f54eb74 100644 --- a/hosts/modules/server/nginx.nix +++ b/hosts/modules/server/nginx.nix @@ -1,3 +1,4 @@ +# Nginx Reverse Proxy & ACME certs {config, ...}:{ services.nginx.enable = true; security.acme = { diff --git a/hosts/modules/server/ntfy-sh.nix b/hosts/modules/server/ntfy-sh.nix index 91a62be..3fed02a 100644 --- a/hosts/modules/server/ntfy-sh.nix +++ b/hosts/modules/server/ntfy-sh.nix @@ -1,3 +1,4 @@ +# Push Notification Server # https://mynixos.com/nixpkgs/options/services.ntfy-sh let hostname = "ntfy.anotherhadi.com"; @@ -9,7 +10,7 @@ in{ settings = { base-url = url; listen-http = "${port}"; - # auth-file + # auth-file = "/etc/ntfy-sh/authfile" auth-default-access = "deny-all"; behind-proxy = true; }; diff --git a/hosts/modules/server/openssh.nix b/hosts/modules/server/openssh.nix index 6dd327e..57946a1 100644 --- a/hosts/modules/server/openssh.nix +++ b/hosts/modules/server/openssh.nix @@ -1,3 +1,4 @@ +# SSH server { services.openssh = { enable = true; diff --git a/hosts/modules/server/security.nix b/hosts/modules/server/security.nix index 1123365..c84ac1f 100644 --- a/hosts/modules/server/security.nix +++ b/hosts/modules/server/security.nix @@ -1,3 +1,4 @@ +# Firewall & fail2ban { networking.firewall.enable = true; services.fail2ban = { diff --git a/hosts/modules/server/unifi.nix b/hosts/modules/server/unifi.nix index d9de95d..95d5e2f 100644 --- a/hosts/modules/server/unifi.nix +++ b/hosts/modules/server/unifi.nix @@ -1,6 +1,7 @@ +# unifi controller service { services.unifi = { enable = true; - openFirewall = true; + openFirewall = true; # 8443(webui) and other port use by AP }; } \ No newline at end of file diff --git a/hosts/modules/server/vaultwarden.nix b/hosts/modules/server/vaultwarden.nix index b09c936..5c022b2 100644 --- a/hosts/modules/server/vaultwarden.nix +++ b/hosts/modules/server/vaultwarden.nix @@ -1,3 +1,4 @@ +# Password manager let hostname = "vault.anotherhadi.com"; url = "https://"+hostname;