Last active
January 29, 2017 12:09
-
-
Save nhooyr/dee280772f1e12e05d1ec8f6fe0e360f to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "cacheDir": "/var/lib/tlsmuxd", | |
| "email": "[email protected]", | |
| "enable": true, | |
| "hosts": { | |
| "aubble.com": [ | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 1]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:906", | |
| "name": "ssh" | |
| }, | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 2]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:8081", | |
| "name": "h2" | |
| }, | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 3]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:8080", | |
| "name": "" | |
| } | |
| ], | |
| "avondieselemission.com": [ | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 1]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:8083", | |
| "name": "h2" | |
| }, | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 2]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:8082", | |
| "name": "" | |
| } | |
| ], | |
| "dropbox.aubble.com": [ | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 1]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:8087", | |
| "name": "h2" | |
| }, | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 2]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:8086", | |
| "name": "" | |
| } | |
| ], | |
| "lounge.aubble.com": [ | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 1]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:8088", | |
| "name": "" | |
| } | |
| ], | |
| "radiograydon.aubble.com": [ | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 1]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:8085", | |
| "name": "h2" | |
| }, | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 2]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:8084", | |
| "name": "" | |
| } | |
| ], | |
| "www.aubble.com": [ | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 1]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:8081", | |
| "name": "h2" | |
| }, | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 2]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:8080", | |
| "name": "" | |
| } | |
| ], | |
| "www.avondieselemission.com": [ | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 1]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:8083", | |
| "name": "h2" | |
| }, | |
| { | |
| "_module": { | |
| "args": { | |
| "name": "[definition 1-entry 2]" | |
| }, | |
| "check": true | |
| }, | |
| "addr": "localhost:8082", | |
| "name": "" | |
| } | |
| ] | |
| } | |
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| enable = true; | |
| email = "[email protected]"; | |
| cacheDir = "/var/lib/tlsmuxd"; | |
| hosts = { | |
| "aubble.com" = [ | |
| {name = "ssh"; addr = "localhost:906";} | |
| {name = "h2"; addr = "localhost:8081";} | |
| {name = ""; addr = "localhost:8080";} | |
| ]; | |
| "www.aubble.com" = [ | |
| {name = "h2"; addr = "localhost:8081";} | |
| {name = ""; addr = "localhost:8080";} | |
| ]; | |
| "avondieselemission.com" = [ | |
| {name = "h2"; addr = "localhost:8083";} | |
| {name = ""; addr = "localhost:8082";} | |
| ]; | |
| "www.avondieselemission.com" = [ | |
| {name = "h2"; addr = "localhost:8083";} | |
| {name = ""; addr = "localhost:8082";} | |
| ]; | |
| "radiograydon.aubble.com" = [ | |
| {name = "h2"; addr = "localhost:8085";} | |
| {name = ""; addr = "localhost:8084";} | |
| ]; | |
| "dropbox.aubble.com" = [ | |
| {name = "h2"; addr = "localhost:8087";} | |
| {name = ""; addr = "localhost:8086";} | |
| ]; | |
| "lounge.aubble.com" = [ | |
| {name = ""; addr = "localhost:8088";} | |
| ]; | |
| }; | |
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { config, lib, pkgs, ... }: | |
| with lib; | |
| let | |
| configFile = pkgs.writeText "config.json" (builtins.toJSON config.services.tlsmuxd); | |
| in | |
| { | |
| options.services.tlsmuxd = { | |
| enable = mkEnableOption "tlsmuxd"; | |
| email = mkOption { | |
| type = types.str; | |
| description = "email for lets encrypt registration"; | |
| }; | |
| cacheDir = mkOption { | |
| type = types.str; | |
| description = "directory for storing data"; | |
| }; | |
| hosts = mkOption { | |
| type = types.attrsOf (types.listOf (types.submodule { | |
| options = { | |
| name = mkOption { | |
| type = types.str; | |
| description = "protocol name"; | |
| }; | |
| addr = mkOption { | |
| type = types.str; | |
| description = "backend address"; | |
| }; | |
| }; | |
| })); | |
| description = "set of hosts"; | |
| }; | |
| }; | |
| config = mkIf config.services.tlsmuxd.enable { | |
| systemd.services.tlsmuxd = { | |
| description = "tlsmuxd"; | |
| wantedBy = [ "multi-user.target" ]; | |
| after = [ "network.target" ]; | |
| serviceConfig = { | |
| Restart = "on-failure"; | |
| PrivateTmp = true; | |
| PrivateDevices = true; | |
| NoNewPrivileges = true; | |
| ExecStart = "${pkgs.tlsmuxd}/bin/tlsmuxd -c ${configFile}"; | |
| ProtectSystem = "full"; | |
| ProtectHome = true; | |
| RestrictAddressFamilies = "AF_INET AF_INET6"; | |
| }; | |
| }; | |
| }; | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment