secure transmission

nixos/configs/robi/configuration.nix

@@ -7,7 +7,6 @@
 
     ./hetzner.nix
 
-
     ./packages.nix
     ./tinc.nix
     ./syncthing.nix
@@ -35,6 +34,13 @@
 
   ];
 
+  # 2 hours = 2 * 60 * 60 = 7200 seconds
+  #services.netdata.config.global.history = 7200;
+  # 4 hours = 4 * 60 * 60 = 14440 seconds
+  services.netdata.config.global.history = 14440;
+  # 24 hours = 24 * 60 * 60 = 86400 seconds
+  #services.netdata.config.global.history = 86400;
+
   services.sshguard.enable = true;
 
   # Shell configuration

nixos/configs/robi/transmission.nix

@@ -287,13 +287,18 @@ in
   #  [ 5044 12304 12305 ];
 
   # host nginx setup
-  # curl transmission.robi.private                                  < will work
+  # curl transmission.robi.private                                   < will work
-  # curl -H "Host: transmission.robi.private" http://144.76.13.147/ < will work
+  # curl -H "Host: transmission.robi.private" https://robi.private/  < will work
+  # curl -H "Host: transmission.robi.private" https://144.76.13.147/ < wont work
   services.nginx = {
     enable = true;
     recommendedProxySettings = true;
     virtualHosts = {
       "transmission.${config.networking.hostName}.private" = {
+        extraConfig = ''
+          allow ${config.module.cluster.services.tinc.private.networkSubnet};
+          deny all;
+        '';
         locations."/" = {
           proxyPass = "http://${containerAddress}:${toString uiPort}";
         };