From 69cf719b651916c4b19033e8d763d7c105858993 Mon Sep 17 00:00:00 2001 From: xinyangli Date: Fri, 22 Nov 2024 12:07:10 +0800 Subject: [PATCH] weilite: add jackett and derper --- machines/weilite/default.nix | 13 +++++++++++++ machines/weilite/services/default.nix | 1 + machines/weilite/services/media-download.nix | 6 ++++++ 3 files changed, 20 insertions(+) create mode 100644 machines/weilite/services/media-download.nix diff --git a/machines/weilite/default.nix b/machines/weilite/default.nix index 2fdacc1..96f2f2d 100644 --- a/machines/weilite/default.nix +++ b/machines/weilite/default.nix @@ -2,6 +2,7 @@ inputs, config, pkgs, + lib, modulesPath, ... }: @@ -150,6 +151,15 @@ permitCertUid = "caddy"; }; + services.tailscale.derper = { + enable = true; + domain = "derper00.namely.icu"; + openFirewall = true; + verifyClients = true; + }; + # tailscale derper module use nginx for reverse proxy + services.nginx.enable = lib.mkForce false; + services.caddy = { enable = true; package = pkgs.caddy.withPlugins { @@ -165,6 +175,9 @@ ]; vendorHash = "sha256-OhOeU2+JiJyIW9WdCYq98OKckXQZ9Fn5zULz0aLsXMI="; }; + virtualHosts."derper00.namely.icu:8443".extraConfig = '' + reverse_proxy 127.0.0.1:${toString config.services.tailscale.derper.port} + ''; virtualHosts."weilite.coho-tet.ts.net:8080".extraConfig = '' reverse_proxy 127.0.0.1:${toString config.services.immich.port} ''; diff --git a/machines/weilite/services/default.nix b/machines/weilite/services/default.nix index 031018b..d70e175 100644 --- a/machines/weilite/services/default.nix +++ b/machines/weilite/services/default.nix @@ -2,5 +2,6 @@ imports = [ ./ocis.nix ./restic.nix + ./media-download.nix ]; } diff --git a/machines/weilite/services/media-download.nix b/machines/weilite/services/media-download.nix new file mode 100644 index 0000000..36ae424 --- /dev/null +++ b/machines/weilite/services/media-download.nix @@ -0,0 +1,6 @@ +{ + services.jackett = { + enable = true; + openFirewall = false; + }; +}