From d417a259f2bebefe56e8134277ac8aaea1eab56f Mon Sep 17 00:00:00 2001
From: albert <albert@sysctl.io>
Date: Sun, 9 Mar 2025 12:04:12 -0700
Subject: [PATCH] Testing HAProxy IPv6

---
 nixos/hosts/frankfurt-linode-01/firewall.nix | 26 ++++++++++++++------
 1 file changed, 19 insertions(+), 7 deletions(-)

diff --git a/nixos/hosts/frankfurt-linode-01/firewall.nix b/nixos/hosts/frankfurt-linode-01/firewall.nix
index 982a444e..e2e22ca5 100644
--- a/nixos/hosts/frankfurt-linode-01/firewall.nix
+++ b/nixos/hosts/frankfurt-linode-01/firewall.nix
@@ -63,7 +63,8 @@
 
       frontend http
         mode http
-        bind :80
+        # bind :80
+        bind :::80 v4v6
         # bind :443 ssl crt /Storage/Data/Docker/sysctl.io/letsencrypt/external/*.sysctl.io/combined.pem
         
         acl is-blocked-ip src -f /etc/haproxy-blocked-ips
@@ -80,10 +81,13 @@
         
       frontend tcp
         mode tcp
-        bind :25565 
-        bind :4443  
-        bind :443  
-        
+        # bind :25565 
+        # bind :4443  
+        # bind :443  
+        bind :::25565 v4v6
+        bind :::4443 v4v6
+        bind :::443 v4v6
+
         acl is-blocked-ip src -f /etc/haproxy-blocked-ips
         http-request deny if is-blocked-ip
 
@@ -100,14 +104,22 @@
         bind :587
         bind :993
         bind :4190
-        default_backend backend_mail 
+        
+        bind :::25 v4v6
+        bind :::143 v4v6
+        bind :::465 v4v6
+        bind :::587 v4v6
+        bind :::993 v4v6
+        bind :::4190 v4v6
+
       backend backend_mail
         mode tcp 
         server mailserver-wg 10.100.1.3
 
       frontend vintage-story
         mode tcp 
-        bind :42420
+        # bind :42420
+        bind :::42420 v4v6
         default_backend backend_vintage-story 
       backend backend_vintage-story
         mode tcp