diff --git a/system-config/configuration/homebox/default.nix b/system-config/configuration/homebox/default.nix index a8f88c6..5f1dc87 100644 --- a/system-config/configuration/homebox/default.nix +++ b/system-config/configuration/homebox/default.nix @@ -98,7 +98,16 @@ nameservers = [ "1.1.1.1" "1.0.0.1" ]; networkmanager.enable = true; firewall.allowedTCPPorts = [ 22 80 443 ]; - firewall.interfaces."ve-traefik".allowedTCPPorts = [ 9000 8080 6080 8123 ]; + firewall.interfaces."ve-traefik".allowedTCPPorts = [ + 9000 + 8080 + 6080 + 8123 + 11432 + 11433 + 11434 + 11435 + ]; hosts = { "192.168.100.11" = [ "blunkall.us" "*.blunkall.us" "*.local.blunkall.us" ]; "192.168.100.20" = [ "gitea.blunkall.us" ]; diff --git a/system-config/services/containers/traefik/default.nix b/system-config/services/containers/traefik/default.nix index 63cf04f..1fea4ed 100644 --- a/system-config/services/containers/traefik/default.nix +++ b/system-config/services/containers/traefik/default.nix @@ -132,6 +132,7 @@ middlewares = [ "authentik" ]; + priority = 1; }; nathan = { entryPoints = [ "localsecure" "websecure" ]; @@ -152,6 +153,36 @@ service = "homeassistant"; tls.certResolver = "cloudflare"; }; + + openWakeWord = { + entryPoints = [ "websecure" ]; + rule = "Path(`/api/openWakeWord`)"; + service = "openWakeWord"; + tls.certResolver = "cloudflare"; + priority = 2; + }; + faster-whisper = { + entryPoints = [ "websecure" ]; + rule = "Path(`/api/faster-whisper`)"; + service = "faster-whisper"; + tls.certResolver = "cloudflare"; + priority = 2; + }; + ollama = { + entryPoints = [ "websecure" ]; + rule = "Path(`/api/ollama`)"; + service = "ollama"; + tls.certResolver = "cloudflare"; + priority = 2; + }; + piper = { + entryPoints = [ "websecure" ]; + rule = "Path(`/api/piper`)"; + service = "piper"; + tls.certResolver = "cloudflare"; + priority = 2; + }; + jellyfin = { entryPoints = [ "localsecure" "websecure" ]; rule = "Host(`jellyfin.blunkall.us`)"; @@ -257,6 +288,11 @@ ntfy.loadBalancer.servers = [ { url = "http://192.168.100.19"; } ]; homeassistant.loadBalancer.servers = [ { url = "http://192.168.100.10:8123"; } ]; + + openWakeWord.loadBalancer.servers = [ { url = "tcp://192.168.100.10:11432"; } ]; + faster-whisper.loadBalancer.servers = [ { url = "tcp://192.168.100.10:11433"; } ]; + ollama.loadBalancer.servers = [ { url = "tcp://192.168.100.10:11434"; } ]; + piper.loadBalancer.servers = [ { url = "tcp://192.168.100.10:11435"; } ]; }; }; };