From a78f120a65f3a1145f6de8097d70cf495a21430d Mon Sep 17 00:00:00 2001
From: h7x4 <h7x4@nani.wtf>
Date: Sun, 22 Jan 2023 17:36:58 +0100
Subject: [PATCH] explicitly state nginx listen addresses

---
 hosts/ildkule/services/nginx/default.nix | 15 ++++++++++++---
 hosts/jokum/services/nginx/default.nix   | 15 +++++++++++----
 2 files changed, 23 insertions(+), 7 deletions(-)

diff --git a/hosts/ildkule/services/nginx/default.nix b/hosts/ildkule/services/nginx/default.nix
index 99dfbd8..90954a1 100644
--- a/hosts/ildkule/services/nginx/default.nix
+++ b/hosts/ildkule/services/nginx/default.nix
@@ -1,7 +1,5 @@
-{config, ... }:
-
+{ config, values, ... }:
 {
-
   security.acme = {
     acceptTerms = true;
     defaults.email = "drift@pvv.ntnu.no";
@@ -10,6 +8,17 @@
   services.nginx = {
     enable = true;
 
+    enableReload = true;
+
+    defaultListenAddresses = [
+      values.hosts.ildkule.ipv4
+      "[${values.hosts.ildkule.ipv6}]"
+
+      "127.0.0.1"
+      "127.0.0.2"
+      "[::1]"
+    ];
+
     recommendedProxySettings = true;
     recommendedTlsSettings = true;
     recommendedGzipSettings = true;
diff --git a/hosts/jokum/services/nginx/default.nix b/hosts/jokum/services/nginx/default.nix
index f2a97a5..eb4f768 100644
--- a/hosts/jokum/services/nginx/default.nix
+++ b/hosts/jokum/services/nginx/default.nix
@@ -1,7 +1,5 @@
-{config, ... }:
-
+{ config, values, ... }:
 {
-
   security.acme = {
     acceptTerms = true;
     defaults.email = "danio@pvv.ntnu.no";
@@ -10,7 +8,16 @@
   services.nginx = {
     enable = true;
 
-    defaultListenAddresses = [ "129.241.210.169" "127.0.0.1" "127.0.0.2" "[2001:700:300:1900::169]" "[::1]" ];
+    enableReload = true;
+
+    defaultListenAddresses = [
+      values.hosts.jokum.ipv4
+      "[${values.hosts.jokum.ipv6}]"
+
+      "127.0.0.1"
+      "127.0.0.2"
+      "[::1]"
+    ];
 
     recommendedProxySettings = true;
     recommendedTlsSettings = true;