imported system/home-manager config

author: aethrvmn <me@aethrvmn.gr> 2025-08-31 14:21:34 +0000
committer: aethrvmn <me@aethrvmn.gr> 2025-08-31 14:21:34 +0000
commit: bfd970a07c231b5781871c16cb4612eb4c6b8fd4 (patch)
tree: 50a4ac5138d1f438e4d5bad3a3dd880a0784cd3e /modules/server/default.nix
parent: added flake (diff)
1 files changed, 53 insertions, 0 deletions
diff --git a/modules/server/default.nix b/modules/server/default.nix
new file mode 100644
index 0000000..60b7681
--- /dev/null
+++ b/modules/server/default.nix
@@ -0,0 +1,53 @@
+{
+	imports = [
+		./adguard
+		./calibre
+		./cgit
+		./forgejo
+		./gemini
+		./grafana
+		./immich
+		./jellyfin
+		./ollama
+		./searx
+	];
+	
+	services = {
+		nginx = {
+			enable = true;
+	    recommendedGzipSettings = true;
+	    recommendedOptimisation = true;
+	    recommendedProxySettings = true;
+		};
+
+		sshguard.enable = true;
+
+		openssh = {
+		  enable  = false;
+		  settings = {
+		    PermitRootLogin = false;
+		    PasswordAuthentication = false;
+		    AllowTcpForwarding = false;
+		    X11Forwarding = false;
+		  };
+		};
+	};
+
+	networking = {
+		firewall.allowedTCPPorts = [ 80 ];
+
+		hosts = {
+		  "127.0.0.1" = [
+		  	"library.internal"
+		  	"media.internal"
+		  	"photos.internal"
+		  	"chat.internal"
+		  	"ollama.internal"
+		  	"code.internal"
+		  	"forge.internal"
+		  	"search.internal"
+		  	"monitor.internal"
+		  ];
+		};
+	};
+}
author	aethrvmn <me@aethrvmn.gr>	2025-08-31 14:21:34 +0000
committer	aethrvmn <me@aethrvmn.gr>	2025-08-31 14:21:34 +0000
commit	bfd970a07c231b5781871c16cb4612eb4c6b8fd4 (patch)
tree	50a4ac5138d1f438e4d5bad3a3dd880a0784cd3e /modules/server/default.nix
parent	added flake (diff)