fix forgejo crypto
This commit is contained in:
Ellie
parent
311c85642b
commit
c43c6c43a5
3 changed files with 9 additions and 5 deletions
|
|
@ -24,8 +24,14 @@
|
||||||
PasswordAuthentication = false;
|
PasswordAuthentication = false;
|
||||||
KbdInteractiveAuthentication = false;
|
KbdInteractiveAuthentication = false;
|
||||||
PermitRootLogin = "no";
|
PermitRootLogin = "no";
|
||||||
AllowUsers = [ "ellie" ];
|
AllowUsers = [ "ellie" "forgejo" ];
|
||||||
};
|
};
|
||||||
|
extraConfig = ''
|
||||||
|
Match User forgejo Address 10.10.0.1
|
||||||
|
AllowTcpForwarding no
|
||||||
|
X11Forwarding no
|
||||||
|
PermitTunnel no
|
||||||
|
'';
|
||||||
};
|
};
|
||||||
|
|
||||||
services.fail2ban = {
|
services.fail2ban = {
|
||||||
|
|
|
||||||
|
|
@ -8,7 +8,6 @@
|
||||||
|
|
||||||
networking.firewall.interfaces.wg0.allowedTCPPorts = [
|
networking.firewall.interfaces.wg0.allowedTCPPorts = [
|
||||||
3000
|
3000
|
||||||
2222
|
|
||||||
];
|
];
|
||||||
|
|
||||||
services.forgejo = {
|
services.forgejo = {
|
||||||
|
|
@ -20,10 +19,9 @@
|
||||||
ROOT_URL = "https://forgejo.ellie.town/";
|
ROOT_URL = "https://forgejo.ellie.town/";
|
||||||
HTTP_ADDR = "10.10.0.2";
|
HTTP_ADDR = "10.10.0.2";
|
||||||
HTTP_PORT = 3000;
|
HTTP_PORT = 3000;
|
||||||
START_SSH_SERVER = true;
|
START_SSH_SERVER = false;
|
||||||
SSH_DOMAIN = "forgejo.ellie.town";
|
SSH_DOMAIN = "forgejo.ellie.town";
|
||||||
SSH_PORT = 2222;
|
SSH_PORT = 2222;
|
||||||
SSH_LISTEN_PORT = 2222;
|
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -97,7 +97,7 @@
|
||||||
}
|
}
|
||||||
|
|
||||||
upstream forgejo_ssh {
|
upstream forgejo_ssh {
|
||||||
server 10.10.0.2:2222;
|
server 10.10.0.2:22;
|
||||||
}
|
}
|
||||||
server {
|
server {
|
||||||
listen 2222;
|
listen 2222;
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue