31 lines
524 B
Nix
31 lines
524 B
Nix
{ ... }:
|
|
{
|
|
networking.firewall.allowedTCPPorts = [
|
|
80
|
|
443
|
|
];
|
|
services.caddy = {
|
|
enable = true;
|
|
email = "evie@xenia.me.uk";
|
|
virtualHosts."xenia.me.uk" = {
|
|
serverAliases = [ "www.xenia.me.uk" ];
|
|
extraConfig = ''
|
|
file_server * {
|
|
root /var/www/xenia.me.uk/
|
|
}
|
|
'';
|
|
};
|
|
};
|
|
services.fail2ban = {
|
|
enable = true;
|
|
ignoreIP = [
|
|
"127.0.0.1/8"
|
|
"::1"
|
|
"192.168.1.0/16"
|
|
];
|
|
bantime-increment = {
|
|
enable = true;
|
|
};
|
|
};
|
|
}
|