❄️ Nix configurations
add ssl to adguard
+14
-3
+14
-3
nixos/ferret/adguard.nix
+14
-3
nixos/ferret/adguard.nix
···
1
1
{ pkgs, config, ... }:
2
-
3
-
{
2
+
let
3
+
certloc = "/var/lib/acme/ferret.otter.place";
4
+
in {
4
5
networking.firewall.allowedTCPPorts = [ 53 ];
5
6
6
7
services.adguardhome = {
···
16
17
upstream_dns = [
17
18
"1.1.1.1"
18
19
"9.9.9.9#dns.quad9.net"
19
-
"149.112.112.112#dns.quad9.net"
20
20
];
21
21
};
22
22
filtering = {
···
36
36
"https://adguardteam.github.io/HostlistsRegistry/assets/filter_11.txt" # malicious url blocklist
37
37
];
38
38
};
39
+
};
40
+
41
+
# SSL config
42
+
services.caddy = {
43
+
virtualHosts."adguard.ferret.otter.place".extraConfig = ''
44
+
reverse_proxy http://${toString config.services.adguardhome.host}:${toString config.services.adguardhome.port}
45
+
46
+
tls ${certloc}/cert.pem ${certloc}/key.pem {
47
+
protocols tls1.3
48
+
}
49
+
'';
39
50
};
40
51
}