in
{
imports = [
- ./websites/chloe
- ./websites/ludivine
- ./websites/aten
- ./websites/piedsjaloux
- ./websites/connexionswing
+ ./chloe
+ ./ludivine
+ ./aten
+ ./piedsjaloux
+ ./connexionswing
# built using:
# sed -e "s/services\.httpd/services\.httpdProd/g" .nix-defexpr/channels/nixpkgs/nixos/modules/services/web-servers/apache-httpd/default.nix
# And removed users / groups
- ./websites/apache/httpd_prod.nix
- ./websites/apache/httpd_inte.nix
+ ./apache/httpd_prod.nix
+ ./apache/httpd_inte.nix
];
options.services.myWebsites = {
};
config = {
+ networking = {
+ firewall = {
+ enable = true;
+ allowedTCPPorts = [ 80 443 ];
+ };
+ interfaces."eth0".ipv4.addresses = [
+ # 176.9.151.89 declared in nixops -> infra / tools
+ { address = myconfig.ips.production; prefixLength = 32; }
+ { address = myconfig.ips.integration; prefixLength = 32; }
+ ];
+ };
+
services.myWebsites.Chloe.production.enable = cfg.production.enable;
services.myWebsites.Ludivine.production.enable = cfg.production.enable;
services.myWebsites.Aten.production.enable = cfg.production.enable;