From 433c52309b25f16018d32d7d4994a1f289327f3e Mon Sep 17 00:00:00 2001 From: Richie Cahill Date: Wed, 12 Feb 2025 19:43:00 -0500 Subject: [PATCH] set up duel stack for haproxy --- systems/jeeves/services/audiobookshelf.nix | 1 - systems/jeeves/services/haproxy.cfg | 18 +++++++++--------- systems/jeeves/services/home_assistant.nix | 3 ++- 3 files changed, 11 insertions(+), 11 deletions(-) diff --git a/systems/jeeves/services/audiobookshelf.nix b/systems/jeeves/services/audiobookshelf.nix index 4a7a920..ed2a644 100644 --- a/systems/jeeves/services/audiobookshelf.nix +++ b/systems/jeeves/services/audiobookshelf.nix @@ -6,7 +6,6 @@ in services.audiobookshelf = { enable = true; openFirewall = true; - host = "192.168.90.40"; }; systemd.services.audiobookshelf.serviceConfig.WorkingDirectory = lib.mkForce "${vars.media_docker_configs}/audiobookshelf"; diff --git a/systems/jeeves/services/haproxy.cfg b/systems/jeeves/services/haproxy.cfg index 8620d77..06c369a 100644 --- a/systems/jeeves/services/haproxy.cfg +++ b/systems/jeeves/services/haproxy.cfg @@ -21,8 +21,8 @@ defaults #Application Setup frontend ContentSwitching - bind *:80 - bind *:443 ssl crt /zfs/storage/secrets/docker/cloudflare.pem + bind *:80 v4v6 + bind *:443 v4v6 ssl crt /zfs/storage/secrets/docker/cloudflare.pem mode http # tmmworkshop.com acl host_audiobookshelf hdr(host) -i audiobookshelf.tmmworkshop.com @@ -43,31 +43,31 @@ frontend ContentSwitching backend audiobookshelf_nodes mode http - server server 192.168.90.40:8000 + server server 127.0.0.1:8000 backend cache_nodes mode http - server server 192.168.90.40:5000 + server server 127.0.0.1:5000 backend filebrowser_nodes mode http - server server 192.168.90.40:8080 + server server 127.0.0.1:8080 backend homeassistant_nodes mode http - server server 192.168.95.14:8123 + server server 127.0.0.1:8123 backend jellyfin option httpchk option forwardfor http-check send meth GET uri /health http-check expect string Healthy - server jellyfin 192.168.95.14:8096 + server jellyfin 127.0.0.1:8096 backend share_nodes mode http - server server 192.168.95.14:8091 + server server 127.0.0.1:8091 backend uptime_kuma_nodes mode http - server server 192.168.95.14:3001 + server server 127.0.0.1:3001 diff --git a/systems/jeeves/services/home_assistant.nix b/systems/jeeves/services/home_assistant.nix index cf51bf6..8d27b19 100644 --- a/systems/jeeves/services/home_assistant.nix +++ b/systems/jeeves/services/home_assistant.nix @@ -13,9 +13,10 @@ in server_host = [ "192.168.95.14" "192.168.90.40" + "127.0.0.1" ]; use_x_forwarded_for = true; - trusted_proxies = "192.168.95.0/24"; + trusted_proxies = "127.0.0.1"; }; homeassistant = { time_zone = "America/New_York";