dotfiles/system/nixos/home-proxy.nix

{ pkgs, config, secret, ... }:

{
  services.nginx.streamConfig = ''
    resolver 1.1.1.1 ipv6=off;

    upstream home {
      server ${secret.nginx.upstream.home.hostname}:${builtins.toString secret.nginx.upstream.home.port};
    }

    server {
      listen ${builtins.toString secret.nginx.upstream.home.port};
      proxy_protocol on;
      proxy_pass home;
    }
  '';

  networking.firewall.interfaces."enp1s0".allowedTCPPorts = [ secret.nginx.upstream.home.port ];
}
wip: home proxy 2023-04-08 22:37:43 +00:00			`{ pkgs, config, secret, ... }:`

			`{`
			`services.nginx.streamConfig = ''`
fixup 2023-04-08 22:43:37 +00:00			`resolver 1.1.1.1 ipv6=off;`

fixup 2023-04-09 00:11:14 +00:00			`upstream home {`
home-proxy: Update 2023-04-09 10:16:33 +00:00			`server ${secret.nginx.upstream.home.hostname}:${builtins.toString secret.nginx.upstream.home.port};`
fixup 2023-04-09 00:11:14 +00:00			`}`

wip: home proxy 2023-04-08 22:37:43 +00:00			`server {`
home-proxy: Update 2023-04-09 10:16:33 +00:00			`listen ${builtins.toString secret.nginx.upstream.home.port};`
fixup 2023-04-09 00:11:14 +00:00			`proxy_protocol on;`
			`proxy_pass home;`
wip: home proxy 2023-04-08 22:37:43 +00:00			`}`
			`'';`

			`networking.firewall.interfaces."enp1s0".allowedTCPPorts = [ secret.nginx.upstream.home.port ];`
			`}`