From 893ea11e1dc05fe1a2a34e66d4ebcfdffda34720 Mon Sep 17 00:00:00 2001
From: aethrvmn <me@aethrvmn.gr>
Date: Sun, 30 Nov 2025 22:59:43 +0100
Subject: huge restructure of modules

---
 modules/nginx/default.nix | 40 ++++++++++++++++++++++++++++++++++++++++
 1 file changed, 40 insertions(+)
 create mode 100644 modules/nginx/default.nix

(limited to 'modules/nginx')

diff --git a/modules/nginx/default.nix b/modules/nginx/default.nix
new file mode 100644
index 0000000..151a934
--- /dev/null
+++ b/modules/nginx/default.nix
@@ -0,0 +1,40 @@
+{
+	services = {
+		nginx = {
+			enable = true;
+	    recommendedGzipSettings = true;
+	    recommendedOptimisation = true;
+	    recommendedProxySettings = true;
+		};
+
+		sshguard.enable = true;
+
+		openssh = {
+		  enable  = false;
+		  settings = {
+		    PermitRootLogin = false;
+		    PasswordAuthentication = false;
+		    AllowTcpForwarding = false;
+		    X11Forwarding = false;
+		  };
+		};
+	};
+
+	networking = {
+		firewall.allowedTCPPorts = [ 80 ];
+
+		hosts = {
+		  "127.0.0.1" = [
+		  	"library.internal"
+		  	"media.internal"
+		  	"photos.internal"
+		  	"chat.internal"
+		  	"ollama.internal"
+		  	"code.internal"
+		  	"forge.internal"
+		  	"search.internal"
+		  	"monitor.internal"
+		  ];
+		};
+	};
+}
-- 
cgit v1.2.3