fujin/nixarr
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

add sabnzbd vpn config

Browse Source
This commit is contained in:
Richard Carter
2024-04-23 15:12:47 -04:00
parent 593bb4ce8f
commit 77b2a589ce
1 changed files with 38 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
nixarr/sabnzbd/default.nix
+38
View File
@@ -67,5 +67,43 @@ in {
}; };
networking.firewall.allowedTCPPorts = mkIf cfg.openFirewall [ defaultPort ]; networking.firewall.allowedTCPPorts = mkIf cfg.openFirewall [ defaultPort ];
# Enable and specify VPN namespace to confine service in.
systemd.services.sabnzbd.vpnconfinement = mkIf cfg.vpn.enable {
enable = true;
vpnnamespace = "wg";
};
# Port mappings
vpnnamespaces.wg = mkIf cfg.vpn.enable {
portMappings = [
{
from = defaultPort;
to = defaultPort;
}
];
};
services.nginx = mkIf cfg.vpn.enable {
enable = true;
recommendedTlsSettings = true;
recommendedOptimisation = true;
recommendedGzipSettings = true;
virtualHosts."127.0.0.1:${builtins.toString defaultPort}" = {
listen = [
{
addr = "0.0.0.0";
port = defaultPort;
}
];
locations."/" = {
recommendedProxySettings = true;
proxyWebsockets = true;
proxyPass = "http://192.168.15.1:${builtins.toString defaultPort}";
};
};
};
}; };
} }