sora: init working neko config

This commit is contained in:
notohh 2023-11-30 10:54:55 -05:00
parent 0bd1afa855
commit 6838da3760
Signed by: notohh
GPG key ID: BD47506D475EE86D
2 changed files with 37 additions and 0 deletions

View file

@ -0,0 +1,23 @@
{config, ...}: {
sops.secrets.neko-admin = {};
networking.firewall.allowedTCPPorts = [8085];
networking.firewall.allowedUDPPorts = [52000 52100];
virtualisation.oci-containers.containers.neko = {
image = "m1k1o/neko:firefox";
ports = [
"8085:8080"
"52000-52100:52000-52100/udp"
];
environment = {
NEKO_SCREEN = "1600x900@60";
NEKO_PASSWORD = "forsen";
NEKO_EPR = "52000-52100";
NEKO_NAT1TO1 = "5.161.102.107";
NEKO_CONTROL_PROTECTION = "true";
NEKO_VIDEO_CODEC = "vp8";
};
environmentFiles = [
/run/secrets/neko-admin
];
};
}

View file

@ -189,6 +189,19 @@
tls.domains = [{main = "*.flake.sh";}]; tls.domains = [{main = "*.flake.sh";}];
tls.certresolver = "production"; tls.certresolver = "production";
}; };
neko-insecure = {
rule = "Host(`neko.flake.sh`)";
entrypoints = ["web"];
service = "neko";
middlewares = "redirect-to-https";
};
neko = {
rule = "Host(`neko.flake.sh`)";
entrypoints = ["websecure"];
service = "neko";
tls.domains = [{main = "*.flake.sh";}];
tls.certresolver = "production";
};
}; };
services = { services = {
gitssh.loadBalancer.servers = [{url = "tcp://100.121.201.47:2222";}]; gitssh.loadBalancer.servers = [{url = "tcp://100.121.201.47:2222";}];
@ -203,6 +216,7 @@
hedgedoc.loadBalancer.servers = [{url = "http://100.121.201.47:3300";}]; hedgedoc.loadBalancer.servers = [{url = "http://100.121.201.47:3300";}];
vaultwarden.loadBalancer.servers = [{url = "http://100.121.201.47:8222";}]; vaultwarden.loadBalancer.servers = [{url = "http://100.121.201.47:8222";}];
searxng.loadBalancer.servers = [{url = "http://100.121.201.47:8100";}]; searxng.loadBalancer.servers = [{url = "http://100.121.201.47:8100";}];
neko.loadBalancer.servers = [{url = "http://100.104.42.96:8085";}];
}; };
}; };
}; };