38 lines
1.1 KiB
Nix
38 lines
1.1 KiB
Nix
|
{ ... }:
|
||
|
|
let
|
||
|
|
domain = "powerdns.mc-fucker.cool";
|
||
|
|
pdnsa_host = "mc5";
|
||
|
|
pdnsa_port = "8000";
|
||
|
|
in
|
||
|
|
{
|
||
|
|
services.nginx.virtualHosts."${domain}" = {
|
||
|
|
forceSSL = true;
|
||
|
|
enableACME = true;
|
||
|
|
extraConfig = ''
|
||
|
|
client_max_body_size 10m;
|
||
|
|
client_body_buffer_size 128k;
|
||
|
|
proxy_redirect off;
|
||
|
|
proxy_connect_timeout 90;
|
||
|
|
proxy_send_timeout 90;
|
||
|
|
proxy_read_timeout 90;
|
||
|
|
proxy_buffers 32 4k;
|
||
|
|
proxy_buffer_size 8k;
|
||
|
|
proxy_set_header Host $host;
|
||
|
|
proxy_set_header X-Real-IP $remote_addr;
|
||
|
|
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||
|
|
proxy_headers_hash_bucket_size 64;
|
||
|
|
'';
|
||
|
|
locations = {
|
||
|
|
"/" = {
|
||
|
|
proxyPass = "http://${pdnsa_host}:${pdnsa_port}";
|
||
|
|
extraConfig = ''
|
||
|
|
proxy_read_timeout 120;
|
||
|
|
proxy_connect_timeout 120;
|
||
|
|
proxy_redirect off;
|
||
|
|
'';
|
||
|
|
};
|
||
|
|
};
|
||
|
|
};
|
||
|
|
}
|
||
|
|
# vim: set et ts=2 sw=2 ai:
|