diff --git a/nixos/hosts/frankfurt-linode-01/firewall.nix b/nixos/hosts/frankfurt-linode-01/firewall.nix index 31473f6c..49ae35a1 100644 --- a/nixos/hosts/frankfurt-linode-01/firewall.nix +++ b/nixos/hosts/frankfurt-linode-01/firewall.nix @@ -52,7 +52,7 @@ environment.systemPackages = [ pkgs.cacert ]; - environment.etc."haproxy/blocked-ips" = '' + environment.etc."haproxy-blocked-ips" = '' # https://openai.com/searchbot.json 20.42.10.176/28 172.203.190.128/28 @@ -326,7 +326,7 @@ bind :80 bind :443 ssl crt /Storage/Data/Docker/sysctl.io/letsencrypt/external/*.sysctl.io/combined.pem - acl is-blocked-ip src -f /etc/haproxy/blocked-ips + acl is-blocked-ip src -f /etc/haproxy-blocked-ips http-request deny if is-blocked-ip http-request redirect scheme https unless { ssl_fc }