From c7349e466fef7ecff5a46b1d0c819975a6bdcb8c Mon Sep 17 00:00:00 2001
From: toufic ar <contact@toufy.me>
Date: Wed, 22 Apr 2026 14:08:19 +0300
Subject: initial commit

---
 common/network.nix | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 common/network.nix

(limited to 'common/network.nix')

diff --git a/common/network.nix b/common/network.nix
new file mode 100644
index 0000000..c1d6eda
--- /dev/null
+++ b/common/network.nix
@@ -0,0 +1,19 @@
+{config, ...}: let
+  customDomain = config.customOps.domain.fqdn;
+  hostname = config.networking.hostName;
+in {
+  networking = {
+    enableIPv6 = true;
+    firewall = {
+      logRefusedPackets = true;
+      allowedTCPPorts = [80 443];
+    };
+  };
+
+  services.nginx.virtualHosts."${hostname}.${customDomain}" = {
+    default = true;
+    locations."/".return = 204;
+    forceSSL = true;
+    enableACME = true;
+  };
+}
-- 
cgit v1.2.3