From e5c45cc51e64c3dd59148b1e8935887bd58899fe Mon Sep 17 00:00:00 2001
From: mc-fucker <dev@mc-fucker.cool>
Date: Wed, 18 Jan 2023 14:34:15 +0100
Subject: [PATCH] added fail2ban

---
 modules/generic.nix | 17 ++++++++++++++---
 1 file changed, 14 insertions(+), 3 deletions(-)

diff --git a/modules/generic.nix b/modules/generic.nix
index 14e6d73..c9a1dd2 100644
--- a/modules/generic.nix
+++ b/modules/generic.nix
@@ -44,9 +44,9 @@ in
     LOGGENERATIONS = "14";
   };
 
-  services.logrotate = {
-    enable = true;
-  };
+  #services.logrotate = {
+  #  enable = true;
+  #};
 
 
   users.defaultUserShell = pkgs.zsh;
@@ -66,7 +66,18 @@ in
       passwordAuthentication = false;
       extraConfig = "ClientAliveInterval 60";
     };
+
     tailscale.enable = true;
+
+    fail2ban = {
+      enable = true;
+      ignoreIP =
+      [
+        "100.64.0.0/16"
+      ];
+    };
+
+    atd.enable = true;
   };
 
   networking.firewall = {