Refine wildcard to only tailnet domains

This commit is contained in:
Nathan McCarty 2025-04-02 05:25:01 -04:00
parent 316ba904aa
commit 14d0fb13ed
2 changed files with 4 additions and 4 deletions

View file

@ -33,9 +33,9 @@
email = "admin@stranger.systems";
};
# Get a wildcard cert
certs."wildcard.stranger.systems" = {
domain = "stranger.systems";
extraDomainNames = ["*.stranger.systems"];
certs."tailnet.stranger.systems" = {
domain = "tailnet.stranger.systems";
extraDomainNames = ["*.tailnet.stranger.systems"];
dnsProvider = "cloudflare";
dnsPropagationCheck = true;
credentialFiles = {

View file

@ -16,7 +16,7 @@
services.nginx.virtualHosts."hub.tailnet.stranger.systems" = {
forceSSL = true;
useACMEHost = "wildcard.stranger.systems";
useACMEHost = "tailnet.stranger.systems";
locations."/" = {
proxyPass = "http://127.0.0.1:8081";
};