chn/nixos
1
0
Fork 0
mirror of https://github.com/CHN-beta/nixos.git synced 2026-01-12 07:29:23 +08:00
Code Issues Packages Projects Releases Wiki Activity

services.fail2ban: 整理

Browse Source
This commit is contained in:
陈浩南
2024-03-24 18:23:50 +08:00
parent beca8ed39c
commit dba0ed975b
3 changed files with 6 additions and 16 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
devices/vps6/default.nix
View File

@@ -67,7 +67,7 @@ inputs:
coturn = {};
httpua = {};
mirism.enable = true;
fail2ban.enable = true;
fail2ban = {};
wireguard =
{
enable = true;

2
devices/vps7/default.nix
View File

@@ -63,7 +63,7 @@ inputs:
httpapi.enable = true;
gitea.enable = true;
grafana.enable = true;
fail2ban.enable = true;
fail2ban = {};
wireguard =
{
enable = true;

18
modules/services/fail2ban.nix
View File

@@ -1,19 +1,9 @@
inputs:
{
options.nixos.services.fail2ban = let inherit (inputs.lib) mkOption types; in
options.nixos.services.fail2ban = let inherit (inputs.lib) mkOption types; in mkOption
{ type = types.nullOr (types.submodule {}); default = null; };
config = let inherit (inputs.config.nixos.services) fail2ban; in inputs.lib.mkIf (fail2ban != null)
{
enable = mkOption { type = types.bool; default = false; };
services.fail2ban = { enable = true; ignoreIP = [ "127.0.0.0/8" "192.168.0.0/16" "vps6.chn.moe" ]; };
};
config =
let
inherit (inputs.config.nixos.services) fail2ban;
inherit (inputs.lib) mkIf;
in mkIf fail2ban.enable
{
services.fail2ban =
{
enable = true;
ignoreIP = [ "127.0.0.0/8" "192.168.0.0/16" "vps6.chn.moe" ];
};
};
}