daniel/dotfiles
1
0
Fork 0
Code Activity Actions

adguardhome: improved upstream config

Browse source
This commit is contained in:
Daniel Kempkens 2024-05-22 10:48:16 +02:00
parent cbdb8eec7a
commit aecd2b2a86
Signed by: daniel
SSH key fingerprint: SHA256:Ks/MyhQYcPRQiwMKLAKquWCdCPe3JXlb1WttgnAoSeM
1 changed files with 60 additions and 45 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

21
system/nixos/adguardhome.nix
View file

@ -60,7 +60,20 @@
virtualisation.podman.defaultNetwork.settings.dns_enabled = lib.mkForce secret.adguardhome.podmanDNS; virtualisation.podman.defaultNetwork.settings.dns_enabled = lib.mkForce secret.adguardhome.podmanDNS;
services.nginx.virtualHosts."${secret.adguardhome.domain_prefix}.internal.kempkens.network" = { services.nginx = {
upstreams.adguardhome = {
servers = {
"127.0.0.1:3000" = {
fail_timeout = "2s";
};
};
extraConfig = ''
keepalive 16;
'';
};
virtualHosts."${secret.adguardhome.domain_prefix}.internal.kempkens.network" = {
serverAliases = [ "dns.internal.kempkens.network" ]; serverAliases = [ "dns.internal.kempkens.network" ];
listen = [ listen = [
@ -99,7 +112,8 @@
} }
]; ];
quic = false; quic = true;
http3 = true;
onlySSL = true; onlySSL = true;
useACMEHost = "internal.kempkens.network"; useACMEHost = "internal.kempkens.network";
@ -112,7 +126,8 @@
locations."/" = { locations."/" = {
recommendedProxySettings = true; recommendedProxySettings = true;
proxyPass = "http://127.0.0.1:3000"; proxyPass = "http://adguardhome";
};
}; };
}; };
} }