1
0
Fork 0
dotfiles/system/nixos/nginx.nix

26 lines
570 B
Nix
Raw Normal View History

2023-03-06 09:21:34 +00:00
{ pkgs, ... }:
2023-03-05 22:51:30 +00:00
{
services.nginx = {
enable = true;
2023-03-06 09:21:34 +00:00
package = pkgs.nginxQuic;
2023-03-05 22:51:30 +00:00
recommendedOptimisation = true;
recommendedGzipSettings = true;
recommendedBrotliSettings = true;
recommendedTlsSettings = true;
};
2023-03-06 08:55:28 +00:00
networking.firewall.interfaces =
let
nginxTCPPorts = [ 80 443 ];
2023-03-06 09:45:35 +00:00
nginxUDPPorts = [ 443 ];
2023-03-06 08:55:28 +00:00
in
{
"enp1s0".allowedTCPPorts = nginxTCPPorts;
2023-03-06 09:45:35 +00:00
"enp1s0".allowedUDPPorts = nginxUDPPorts;
2023-03-06 08:55:28 +00:00
"tailscale0".allowedTCPPorts = nginxTCPPorts;
2023-03-06 09:45:35 +00:00
"tailscale0".allowedUDPPorts = nginxUDPPorts;
2023-03-06 08:55:28 +00:00
};
2023-03-05 22:51:30 +00:00
}