CaZzzer/nix-conf
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: CaZzzer:46cce0d9d6d81d80a89dc30426df38654dbd9f14
Branches Tags
CaZzzer:master CaZzzer:updates CaZzzer:router/home-assistant CaZzzer:router/keepalived CaZzzer:router/module-1 CaZzzer:router/module CaZzzer:router/desktop CaZzzer:router/wireguard CaZzzer:home/refactor CaZzzer:feature/glance CaZzzer:feature/router-4 CaZzzer:feature/router-3 CaZzzer:feature/router-1 CaZzzer:feature/router CaZzzer:feature/router-2 CaZzzer:feature/home-manager CaZzzer:feature/ollama
..
compare: CaZzzer:router/keepalived
Branches Tags
CaZzzer:updates CaZzzer:master CaZzzer:router/home-assistant CaZzzer:router/keepalived CaZzzer:router/module-1 CaZzzer:router/module CaZzzer:router/desktop CaZzzer:router/wireguard CaZzzer:home/refactor CaZzzer:feature/glance CaZzzer:feature/router-4 CaZzzer:feature/router-3 CaZzzer:feature/router-1 CaZzzer:feature/router CaZzzer:feature/router-2 CaZzzer:feature/home-manager CaZzzer:feature/ollama

1 Commits
46cce0d9d6 ... router/kee

Author SHA1 Message Date
Yuri Tatishchev
b06982a443 WIP: router: add keepalived 2025-06-09 19:31:58 -07:00
4 changed files with 23 additions and 23 deletions
Expand all files Collapse all files

1
modules/router/default.nix
View File

@@ -14,6 +14,7 @@ in
./kea.nix ./kea.nix
./glance.nix ./glance.nix
./services.nix ./services.nix
./keepalived.nix
]; ];
# Secrix for secrets management # Secrix for secrets management
secrix.hostPubKey = vars.pubkey; secrix.hostPubKey = vars.pubkey;

2
modules/router/dns.nix
View File

@@ -80,8 +80,6 @@ in
"|etappi.${sysdomain}^$dnsrewrite=${ifs.lan.p4}.12" "|etappi.${sysdomain}^$dnsrewrite=${ifs.lan.p4}.12"
"|etappi.${sysdomain}^$dnsrewrite=${ifs.lan.ulaPrefix}::12:1" "|etappi.${sysdomain}^$dnsrewrite=${ifs.lan.ulaPrefix}::12:1"
"|hass.${domain}^$dnsrewrite=${ifs.lan.ulaAddr}"
# Lab DNS rewrites # Lab DNS rewrites
"||lab.${domain}^$dnsrewrite=etappi.${sysdomain}" "||lab.${domain}^$dnsrewrite=etappi.${sysdomain}"

10
modules/router/keepalived.nix Normal file
View File

@@ -0,0 +1,10 @@
{ config, lib, pkgs, ... }:
let
vaks = import ./vaks.nix config;
in
{
services.keepalived = {
enable = true;
};
}

33
modules/router/services.nix
View File

@@ -60,34 +60,25 @@ in
plugins = [ "github.com/caddy-dns/cloudflare@v0.2.1" ]; plugins = [ "github.com/caddy-dns/cloudflare@v0.2.1" ];
hash = "sha256-Gsuo+ripJSgKSYOM9/yl6Kt/6BFCA6BuTDvPdteinAI="; hash = "sha256-Gsuo+ripJSgKSYOM9/yl6Kt/6BFCA6BuTDvPdteinAI=";
}; };
virtualHosts."*.${domain}".extraConfig = '' virtualHosts."grouter.${domain}".extraConfig = ''
encode encode
tls { tls {
dns cloudflare {env.CF_API_KEY} dns cloudflare {env.CF_API_KEY}
resolvers 1.1.1.1 resolvers 1.1.1.1
} }
@grafana path /grafana /grafana/*
@grouter host grouter.${domain} handle @grafana {
handle @grouter { reverse_proxy localhost:${toString config.services.grafana.settings.server.http_port}
@grafana path /grafana /grafana/* }
handle @grafana { redir /adghome /adghome/
reverse_proxy localhost:${toString config.services.grafana.settings.server.http_port} handle_path /adghome/* {
} reverse_proxy localhost:${toString config.services.adguardhome.port}
redir /adghome /adghome/ basic_auth {
handle_path /adghome/* { Bob $2a$14$HsWmmzQTN68K3vwiRAfiUuqIjKoXEXaj9TOLUtG2mO1vFpdovmyBy
reverse_proxy localhost:${toString config.services.adguardhome.port}
basic_auth {
Bob $2a$14$HsWmmzQTN68K3vwiRAfiUuqIjKoXEXaj9TOLUtG2mO1vFpdovmyBy
}
}
handle /* {
reverse_proxy localhost:${toString config.services.glance.settings.server.port}
} }
} }
handle /* {
@hass host hass.${domain} reverse_proxy localhost:${toString config.services.glance.settings.server.port}
handle @hass {
reverse_proxy homeassistant.4.lab.l.cazzzer.com:8123
} }
''; '';
}; };