2025-02-19 21:45:01 +01:00
|
|
|
# SPDX-FileCopyrightText: 2024 Tom Hubrecht <tom.hubrecht@dgnum.eu>
|
|
|
|
|
#
|
|
|
|
|
# SPDX-License-Identifier: EUPL-1.2
|
|
|
|
|
|
2025-02-23 19:55:33 +01:00
|
|
|
{ meta, ... }:
|
|
|
|
|
|
2025-02-19 21:45:01 +01:00
|
|
|
let
|
|
|
|
|
port = 9428;
|
|
|
|
|
in
|
|
|
|
|
|
|
|
|
|
{
|
2025-02-23 19:55:33 +01:00
|
|
|
services = {
|
|
|
|
|
nginx = {
|
|
|
|
|
enable = true;
|
|
|
|
|
streamConfig = ''
|
|
|
|
|
server {
|
|
|
|
|
listen 10.0.253.1:${toString port};
|
|
|
|
|
listen ${meta.network.vault01.netbirdIp}:${toString port};
|
|
|
|
|
proxy_pass 127.0.0.1:${toString port};
|
|
|
|
|
}
|
|
|
|
|
'';
|
|
|
|
|
};
|
|
|
|
|
victorialogs = {
|
|
|
|
|
enable = true;
|
2025-02-19 21:45:01 +01:00
|
|
|
|
2025-02-23 19:55:33 +01:00
|
|
|
flags = {
|
|
|
|
|
retentionPeriod = "52w";
|
|
|
|
|
httpListenAddr = "127.0.0.1:${builtins.toString port}";
|
|
|
|
|
};
|
2025-02-19 21:45:01 +01:00
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
2025-02-23 19:55:33 +01:00
|
|
|
networking.firewall.interfaces = {
|
|
|
|
|
wt0.allowedTCPPorts = [ port ];
|
|
|
|
|
vlan-admin-ap.allowedTCPPorts = [ port ];
|
|
|
|
|
};
|
2025-02-19 21:45:01 +01:00
|
|
|
}
|
