jordan/nix-config
1
1
Fork 0
Code Issues 10 Pull Requests Actions Projects 3 Wiki Activity

hosts/library: extract SSH tunnel config

Browse Source
This commit is contained in:
Jordan Holt
2025-06-02 22:50:52 +01:00
parent 06a48940a9
commit 4f49a8da98
2 changed files with 33 additions and 26 deletions
Download Patch File Download Diff File Expand all files Collapse all files

27
hosts/library/default.nix
View File

@ -5,6 +5,7 @@
./hardware-configuration.nix ./hardware-configuration.nix
./grafana.nix ./grafana.nix
./prometheus.nix ./prometheus.nix
./tunnel.nix
../server.nix ../server.nix
]; ];
@ -48,32 +49,6 @@
enable = true; enable = true;
}; };
systemd.services.vps1-tunnel = {
enable = true;
description = "vps1.mesh.vimium.net SSH tunnel";
after = [
"network-online.target"
"jellyfin.service"
];
wants = [ "network-online.target" ];
serviceConfig = {
Type = "simple";
ExecStart = pkgs.lib.mkForce ''
${pkgs.openssh}/bin/ssh \
-NT \
-o ExitOnForwardFailure=yes \
-o ServerAliveInterval=60 \
-o TCPKeepAlive=no \
-i %h/.ssh/id_jellyfin \
-R localhost:8000:localhost:8000 \
jellyfin@vps1.mesh.vimium.net
'';
Restart = "always";
RestartSec = 20;
};
wantedBy = [ "default.target" ];
};
services.nginx = services.nginx =
let let
proxyConfig = '' proxyConfig = ''

32
hosts/library/tunnel.nix Normal file
View File

@ -0,0 +1,32 @@
{
pkgs,
...
}:
{
systemd.services.vps1-tunnel = {
enable = true;
description = "vps1.mesh.vimium.net SSH tunnel";
after = [
"network-online.target"
"jellyfin.service"
];
wants = [ "network-online.target" ];
serviceConfig = {
Type = "simple";
ExecStart = pkgs.lib.mkForce ''
${pkgs.openssh}/bin/ssh \
-NT \
-o ExitOnForwardFailure=yes \
-o ServerAliveInterval=60 \
-o TCPKeepAlive=no \
-i %h/.ssh/id_jellyfin \
-R localhost:8000:localhost:8000 \
jellyfin@vps1.mesh.vimium.net
'';
Restart = "always";
RestartSec = 20;
};
wantedBy = [ "default.target" ];
};
}