From 0a1ee1dac56462b5cc50dd28ae9319fe4746a120 Mon Sep 17 00:00:00 2001 From: makefu Date: Fri, 12 Mar 2021 20:09:10 +0100 Subject: [PATCH] ma: deploy storj on omo, forward via gum --- 1systems/gum/config.nix | 7 ++++++- 2configs/storj/client.nix | 27 +++++++++++++++++++++++++++ 2configs/storj/forward-port.nix | 22 ++++++++++++++++++++++ 3 files changed, 55 insertions(+), 1 deletion(-) create mode 100644 2configs/storj/client.nix create mode 100644 2configs/storj/forward-port.nix diff --git a/1systems/gum/config.nix b/1systems/gum/config.nix index 2fd9912..d81aefb 100644 --- a/1systems/gum/config.nix +++ b/1systems/gum/config.nix @@ -43,6 +43,7 @@ in { + # # networking @@ -156,6 +157,7 @@ in { + # @@ -203,7 +205,10 @@ in { # Network networking = { firewall = { - allowedTCPPorts = [ 80 443 ]; + allowedTCPPorts = [ + 80 443 + 28967 # storj + ]; allowPing = true; logRefusedConnections = false; }; diff --git a/2configs/storj/client.nix b/2configs/storj/client.nix new file mode 100644 index 0000000..e37e2ce --- /dev/null +++ b/2configs/storj/client.nix @@ -0,0 +1,27 @@ +{ lib, ... }: +{ + networking.firewall.allowedTCPPorts = [ 28967 ]; + virtualisation.oci-containers.containers.storj-storagenode = { + image = "storjlabs/storagenode:latest"; + ports = [ + # TODO: omo ip + "0.0.0.0:28967:28967" + "127.0.0.1:14002:14002" + ]; + environment = { + # SETUP = "true"; # must be run only once ... + WALLET = "0xeD0d2a2B33F6812b45d2D9FF7a139A3fF65a24C0"; + EMAIL = "storj.io@syntax-fehler.de"; + ADDRESS = "euer.krebsco.de:28967"; + STORAGE = "3TB"; + }; + volumes = [ + "/media/cryptX/lib/storj/identity:/app/identity" + "/media/cryptX/lib/storj/storage:/app/config" + ]; + }; + systemd.services.docker-storj-storagenode.serviceConfig = { + StandardOutput = lib.mkForce "journal"; + StandardError = lib.mkForce "journal"; + }; +} diff --git a/2configs/storj/forward-port.nix b/2configs/storj/forward-port.nix new file mode 100644 index 0000000..213f774 --- /dev/null +++ b/2configs/storj/forward-port.nix @@ -0,0 +1,22 @@ +{ + networking.firewall.allowedTCPPorts = [ 28967 ]; + #networking.nat.forwardPorts = [ + # { # storj + # destination = "10.243.0.89:28967"; + # proto = "tcp"; + # sourcePort = 28967; + # } + #]; + services.nginx.appendConfig = '' + stream { + upstream storj { + server omo.r:28967; + } + + server { + listen 28967; + proxy_pass storj; + } + } + ''; +}