52 lines
1.1 KiB
Nix
52 lines
1.1 KiB
Nix
{ lib, ... }:
|
||
let mkAddress = addr: let
|
||
splitted = lib.splitString "/" addr;
|
||
elemAt = builtins.elemAt splitted;
|
||
in
|
||
{ address = (elemAt 0); prefixLength = lib.toInt (elemAt 1); };
|
||
in {
|
||
systemd.network = {
|
||
enable = true;
|
||
networks."ens18" = {
|
||
DHCP = "no";
|
||
addresses = [
|
||
{ addressConfig.Address = "2001:470:1f13:187:c08e:feff:fe4d:f5f5"; }
|
||
];
|
||
};
|
||
};
|
||
|
||
networking = {
|
||
hostName = "public-cof";
|
||
useNetworkd = true;
|
||
|
||
useDHCP = false;
|
||
|
||
firewall.allowedTCPPorts = [ 22 ];
|
||
firewall.enable = true;
|
||
|
||
/*
|
||
# Default IPv4 exit route
|
||
defaultGateway = {
|
||
address = "";
|
||
interface = "ens20";
|
||
};
|
||
localCommands = "ip route add default dev ens20 metric 10";
|
||
|
||
interfaces.ens19 = {
|
||
useDHCP = false;
|
||
ipv4.addresses = [{
|
||
address = "10.1.1.21";
|
||
prefixLength = 22;
|
||
}];
|
||
};
|
||
|
||
interfaces.ens20 = {
|
||
# 1st is for public-cof
|
||
# 2nd is for IPv4 → IPv6 proxy in v6proxy/
|
||
ipv4.addresses = map mkAddress [ "45.13.104.27/32" "45.13.104.29/32" ];
|
||
};
|
||
*/
|
||
};
|
||
|
||
services.nginx.defaultListenAddresses = [ "[::0]" "45.13.104.27" ];
|
||
}
|