kalipso/infrastructure
1
1
Fork 1
Code Issues 42 Pull Requests 2 Actions Projects 2 Releases Wiki Activity

Proxyforward traffic to fanny #53

Merged
kalipso merged 3 commits from vpnproxy into master 2025-01-16 13:17:51 +01:00
Conversation 0 Commits 3 Files Changed 5 +47 -2
5 changed files with 47 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
machines/configuration.nix
View File

@@ -93,6 +93,8 @@ let
}; };
} }
] ++ defaultModules ++ modules; ] ++ defaultModules ++ modules;
inputsMod = inputs // { malobeo = self; };
in in
{ {
louise = nixosSystem { louise = nixosSystem {
@@ -115,7 +117,7 @@ in
fanny = nixosSystem { fanny = nixosSystem {
system = "x86_64-linux"; system = "x86_64-linux";
specialArgs.inputs = inputs; specialArgs.inputs = inputsMod;
modules = defaultModules ++ [ modules = defaultModules ++ [
self.nixosModules.malobeo.vpn self.nixosModules.malobeo.vpn
./fanny/configuration.nix ./fanny/configuration.nix
@@ -141,6 +143,16 @@ in
]; ];
}; };
infradocs = nixosSystem {
system = "x86_64-linux";
specialArgs.inputs = inputs;
specialArgs.self = self;
modules = makeMicroVM "infradocs" "10.0.0.11" "D0:E5:CA:F0:D7:E7" [
self.nixosModules.malobeo.vpn
./infradocs/configuration.nix
];
};
lucia = nixosSystem { lucia = nixosSystem {
system = "aarch64-linux"; system = "aarch64-linux";
specialArgs.inputs = inputs; specialArgs.inputs = inputs;

2
machines/durruti/host_config.nix
View File

@@ -36,7 +36,7 @@ in
services.nginx.virtualHosts."docs.malobeo.org" = { services.nginx.virtualHosts."docs.malobeo.org" = {
forceSSL = true; forceSSL = true;
enableACME= true; enableACME= true;
locations."/".proxyPass = "http://${cfg.host_ip}:9000"; locations."/".proxyPass = "http://10.0.0.10";
}; };
services.nginx.virtualHosts."tasklist.malobeo.org" = { services.nginx.virtualHosts."tasklist.malobeo.org" = {

9
machines/fanny/configuration.nix
View File

@@ -15,6 +15,7 @@ in
../modules/autoupdate.nix ../modules/autoupdate.nix
inputs.self.nixosModules.malobeo.initssh inputs.self.nixosModules.malobeo.initssh
inputs.self.nixosModules.malobeo.disko inputs.self.nixosModules.malobeo.disko
inputs.self.nixosModules.malobeo.microvm
]; ];
malobeo.autoUpdate = { malobeo.autoUpdate = {
@@ -51,6 +52,14 @@ in
privateKeyFile = config.sops.secrets.wg_private.path; privateKeyFile = config.sops.secrets.wg_private.path;
}; };
services.malobeo.microvm.enableHostBridge = true;
services.malobeo.microvm.deployHosts = [ "infradocs" ];
services.nginx.virtualHosts."docs.malobeo.org" = {
locations."/".proxyPass = "http://10.0.0.11:9000";
};
services.tor = { services.tor = {
enable = true; enable = true;
client.enable = true; client.enable = true;

20
machines/infradocs/configuration.nix Normal file
View File

@@ -0,0 +1,20 @@
{ config, lib, pkgs, inputs, ... }:
with lib;
{
networking = {
hostName = mkDefault "infradocs";
useDHCP = false;
nameservers = [ "1.1.1.1" ];
};
imports = [
../durruti/documentation.nix
../modules/malobeo_user.nix
../modules/sshd.nix
];
system.stateVersion = "22.11"; # Did you read the comment?
}

4
machines/vpn/configuration.nix
View File

@@ -27,6 +27,10 @@ with lib;
privateKeyFile = config.sops.secrets.wg_private.path; privateKeyFile = config.sops.secrets.wg_private.path;
}; };
services.nginx.virtualHosts."docs.malobeo.org" = {
locations."/".proxyPass = "http://10.100.0.101";
};
system.stateVersion = "22.11"; # Did you read the comment? system.stateVersion = "22.11"; # Did you read the comment?
} }