63 lines
1.6 KiB
Nix
63 lines
1.6 KiB
Nix
{ ... }:
|
|
{
|
|
services.nginx = {
|
|
enable = true;
|
|
virtualHosts = {
|
|
"mail-1.grzb.de" = {
|
|
listen = [{
|
|
addr = "0.0.0.0";
|
|
port = 80;
|
|
}];
|
|
locations."/" = {
|
|
# proxy port 80 to mail server nginx for acme http challange
|
|
proxyPass = "http://172.18.50.2:80";
|
|
};
|
|
};
|
|
"status.nekover.se" = {
|
|
forceSSL = true;
|
|
enableACME = true;
|
|
listen = [
|
|
{
|
|
addr = "0.0.0.0";
|
|
port = 80;
|
|
}
|
|
{
|
|
addr = "0.0.0.0";
|
|
port = 443;
|
|
ssl = true;
|
|
}
|
|
];
|
|
locations."/" = {
|
|
proxyPass = "http://localhost:3001";
|
|
proxyWebsockets = true;
|
|
};
|
|
};
|
|
};
|
|
|
|
streamConfig = ''
|
|
map $ssl_preread_server_name $address {
|
|
cloud.nekover.se 10.202.41.122:8443;
|
|
element.nekover.se 10.202.41.100:8443;
|
|
element-admin.nekover.se 10.202.41.100:8443;
|
|
fi.nekover.se 10.202.41.125:8443;
|
|
git.nekover.se 10.202.41.106:8443;
|
|
hydra.nekover.se 10.202.41.121:8443;
|
|
id.nekover.se 10.202.41.124:8443;
|
|
mas.nekover.se 10.202.41.112:8443;
|
|
matrix.nekover.se 10.202.41.112:8443;
|
|
matrix-rtc.nekover.se 10.202.41.112:8443;
|
|
mesh.nekover.se 10.202.41.126:8443;
|
|
nekover.se 10.202.41.100:8443;
|
|
nix-cache.nekover.se 10.202.41.121:8443;
|
|
searx.nekover.se 10.202.41.105:8443;
|
|
social.nekover.se 10.202.41.104:8443;
|
|
}
|
|
server {
|
|
listen [::]:443;
|
|
proxy_pass $address;
|
|
ssl_preread on;
|
|
proxy_protocol on;
|
|
}
|
|
'';
|
|
};
|
|
}
|