Added base configs for nginx and wireguard
This commit is contained in:
parent
e48209fca8
commit
e13a114f81
2 changed files with 109 additions and 0 deletions
101
basic_configs/nginx-vps/nginx.conf
Normal file
101
basic_configs/nginx-vps/nginx.conf
Normal file
|
@ -0,0 +1,101 @@
|
|||
set $domain 272254864.xyz;
|
||||
set $ssl_cert /etc/nginx/.lego/certificates/$domain.crt;
|
||||
set $ssl_key /etc/nginx/.lego/certificates/$domain.key;
|
||||
|
||||
worker_processes auto;
|
||||
|
||||
events {
|
||||
multi_accept on;
|
||||
worker_connections 256;
|
||||
}
|
||||
|
||||
server {
|
||||
listen 80;
|
||||
return 301 https://$host$request_uri;
|
||||
}
|
||||
|
||||
upstream dufs {
|
||||
server 10.44.82.16:10001;
|
||||
}
|
||||
upstream cgit {
|
||||
server 10.44.82.16:10002;
|
||||
}
|
||||
upstream navi {
|
||||
server 10.44.82.16:10003;
|
||||
}
|
||||
upstream ai {
|
||||
server 10.44.82.16:10004;
|
||||
}
|
||||
upstream dns {
|
||||
server 10.44.82.16:10005;
|
||||
}
|
||||
upstream invid {
|
||||
server 10.44.82.16:10006;
|
||||
}
|
||||
upstream searx {
|
||||
server 10.44.82.16:10007;
|
||||
}
|
||||
|
||||
server {
|
||||
listen 10.44.82.1:443 ssl;
|
||||
server_name files.$domain;
|
||||
ssl_certificate $ssl_cert;
|
||||
ssl_certificate_key $ssl_key;
|
||||
|
||||
proxy_pass dufs;
|
||||
}
|
||||
|
||||
server {
|
||||
listen 443 ssl;
|
||||
server_name git.$domain;
|
||||
ssl_certificate $ssl_cert;
|
||||
ssl_certificate_key $ssl_key;
|
||||
|
||||
proxy_pass cgit;
|
||||
}
|
||||
|
||||
server {
|
||||
listen 10.44.82.1:443 ssl;
|
||||
server_name music.$domain;
|
||||
ssl_certificate $ssl_cert;
|
||||
ssl_certificate_key $ssl_key;
|
||||
|
||||
proxy_pass navi;
|
||||
}
|
||||
|
||||
server {
|
||||
listen 10.44.82.1:443 ssl;
|
||||
server_name ai.$domain;
|
||||
ssl_certificate $ssl_cert;
|
||||
ssl_certificate_key $ssl_key;
|
||||
|
||||
proxy_pass ai;
|
||||
}
|
||||
|
||||
server {
|
||||
listen 10.44.82.1:443 ssl;
|
||||
server_name dns.$domain;
|
||||
ssl_certificate $ssl_cert;
|
||||
ssl_certificate_key $ssl_key;
|
||||
|
||||
proxy_ssl on;
|
||||
proxy_pass dns;
|
||||
}
|
||||
|
||||
server {
|
||||
listen 10.44.82.1:443 ssl;
|
||||
server_name yt.$domain;
|
||||
ssl_certificate $ssl_cert;
|
||||
ssl_certificate_key $ssl_key;
|
||||
|
||||
proxy_pass invid;
|
||||
}
|
||||
|
||||
server {
|
||||
listen 10.44.82.1:443 ssl;
|
||||
server_name search.$domain;
|
||||
ssl_certificate $ssl_cert;
|
||||
ssl_certificate_key $ssl_key;
|
||||
|
||||
proxy_pass searx;
|
||||
}
|
8
basic_configs/wg_base.conf
Normal file
8
basic_configs/wg_base.conf
Normal file
|
@ -0,0 +1,8 @@
|
|||
[Interface]
|
||||
PrivateKey = ${WG_PRIV_KEY}
|
||||
Address = 10.44.82.1/24
|
||||
ListenPort = 2107
|
||||
|
||||
[Peer]
|
||||
PublicKey = ${WG_PEER_PUB_KEY}
|
||||
AllowedIPs = 10.44.82.4/32
|
Loading…
Reference in a new issue