diff options
| author | seth <[email protected]> | 2023-07-19 23:13:09 -0400 |
|---|---|---|
| committer | seth <[email protected]> | 2023-07-19 23:13:09 -0400 |
| commit | 9769f23c295bed3a9804d6958644479587a45329 (patch) | |
| tree | bd62b68bffbf151b42de0856603b0503c8bafb33 | |
| parent | 289b29a976fb37b3f7fe8b152d6bd5c7a132a6a1 (diff) | |
hosts/atlas + p-body: close port 80
| -rw-r--r-- | hosts/atlas/nginx.nix | 4 | ||||
| -rw-r--r-- | hosts/p-body/nginx.nix | 9 |
2 files changed, 3 insertions, 10 deletions
diff --git a/hosts/atlas/nginx.nix b/hosts/atlas/nginx.nix index 5805dc8..b6b2fe7 100644 --- a/hosts/atlas/nginx.nix +++ b/hosts/atlas/nginx.nix @@ -1,5 +1,5 @@ {config, ...}: { - networking.firewall.allowedTCPPorts = [80 443]; + networking.firewall.allowedTCPPorts = [443]; security.acme = { acceptTerms = true; @@ -17,7 +17,7 @@ virtualHosts = let mkProxy = endpoint: port: { "${endpoint}" = { - proxyPass = "http://127.0.0.1:${port}"; + proxyPass = "http://localhost:${port}"; proxyWebsockets = true; }; }; diff --git a/hosts/p-body/nginx.nix b/hosts/p-body/nginx.nix index df887b3..3390f89 100644 --- a/hosts/p-body/nginx.nix +++ b/hosts/p-body/nginx.nix @@ -1,7 +1,7 @@ {config, ...}: let inherit (config.networking) domain; in { - networking.firewall.allowedTCPPorts = [80 443]; + networking.firewall.allowedTCPPorts = [443]; security.acme = { acceptTerms = true; @@ -33,13 +33,6 @@ in { locations = mkProxy "/" "8080"; }; - "git.${domain}" = { - enableACME = true; - addSSL = true; - - locations = mkProxy "/" "3000"; - }; - "grafana.${domain}" = { enableACME = true; addSSL = true; |