Add modular service configuration with SearXNG and Nginx

- Create modules/ directory with reusable NixOS modules - Add system module for main user configuration - Add podman module for rootless container support - Add nginx module with automatic Let's Encrypt SSL - Add searxng module with Anubis AI firewall protection - Configure SearXNG at search.ashisgreat.xyz - Enable nginx reverse proxy with HTTPS Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-03-17 19:47:43 +01:00 · 2026-03-17 19:47:43 +01:00 · 24d01ac630
commit 24d01ac630
parent 5dcb85e56d
7 changed files with 469 additions and 1 deletions
--- a/configuration.nix
+++ b/configuration.nix
@ -14,7 +14,7 @@
  # === Firewall ===
  networking.firewall = {
    enable = true;
-    allowedTCPPorts = [ 22 ]; # SSH
+    allowedTCPPorts = [ 22 ]; # SSH (80/443 added by nginx module)
    allowPing = false;
  };

@ -67,4 +67,23 @@
  ];

  nix.settings.experimental-features = [ "nix-command" "flakes" ];
+
+  # === SearXNG ===
+  myModules.searxng = {
+    enable = true;
+    port = 8888;
+    domain = "search.ashisgreat.xyz"; # Change to your domain
+    instanceName = "Ashie Search";
+  };
+
+  # === Nginx Reverse Proxy ===
+  myModules.nginx = {
+    enable = true;
+    email = "info@ashisgreat.xyz";
+    domains = {
+      "search.ashisgreat.xyz" = {
+        port = 8888;
+      };
+    };
+  };
 }