lyes/nixfiles
1
0
Fork 0
Code Issues Pull requests Activity Actions

Adding fail2ban and preparing things

Browse source
This commit is contained in:
Lyes Saadi 2025-10-30 01:39:28 +01:00
parent 202b09159a
commit c8fcad448a
Signed by: lyes
GPG key ID: 55A1D803917CF39A
2 changed files with 14 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

4
hosts/zora/reverse-proxy.nix
View file

@ -19,6 +19,10 @@
locations."/" = { locations."/" = {
root = "/var/data/www/lyes.eu/"; root = "/var/data/www/lyes.eu/";
}; };
extraConfig = ''
allow 82.67.15.247;
deny all;
'';
}; };
# 44300 # 44300
"auth.lyes.eu" = { "auth.lyes.eu" = {

10
modules/server/default.nix
View file

@ -3,6 +3,16 @@
{ {
services.openssh.enable = true; services.openssh.enable = true;
services.fail2ban = {
enable = true;
ignoreIP = [
"82.67.15.247"
"185.230.78.0/23"
];
bantime = "1h";
bantime-increment.enable = true;
};
boot.swraid = { boot.swraid = {
enable = true; enable = true;
mdadmConf = '' mdadmConf = ''