mirror of
https://github.com/ryan4yin/nix-config.git
synced 2026-06-12 01:14:24 +02:00
Ryan Yin
662316c18a
* flake.lock: Update
Flake lock file updates:
• Updated input 'nixpkgs':
'github:NixOS/nixpkgs/7aaa00e7cc9be6c316cb5f6617bd740dd435c59d?narHash=sha256-WacE23EbHTsBKvr8cu%2B1DFNbP6Rh1brHUH5SDUI0NQI%3D' (2026-04-30)
→ 'github:NixOS/nixpkgs/e9a7635a57597d9754eccebdfc7045e6c8600e6b?narHash=sha256-u6WU/yd/o8iYQrHX3RAwO1hYa3LkoSL%2BWNQD0rJfJZQ%3D' (2026-05-29)
* feat: upgrade to nixos 26.05
91 lines
2.0 KiB
Nix
91 lines
2.0 KiB
Nix
{
|
|
# dae(running on aquamarine) do not provides http/socks5 proxy server; so we use v2ray here.
|
|
# https://github.com/v2fly
|
|
services.v2ray = {
|
|
enable = true;
|
|
config = {
|
|
# for monitoring
|
|
"stats" = { };
|
|
"api" = {
|
|
"tag" = "api";
|
|
"services" = [
|
|
"StatsService"
|
|
];
|
|
};
|
|
"policy" = {
|
|
"levels" = {
|
|
"0" = {
|
|
"statsUserUplink" = true;
|
|
"statsUserDownlink" = true;
|
|
};
|
|
};
|
|
"system" = {
|
|
"statsInboundUplink" = true;
|
|
"statsInboundDownlink" = true;
|
|
"statsOutboundUplink" = true;
|
|
"statsOutboundDownlink" = true;
|
|
};
|
|
};
|
|
|
|
inbounds = [
|
|
# core inbound
|
|
{
|
|
listen = "0.0.0.0";
|
|
port = 7890;
|
|
protocol = "http";
|
|
}
|
|
{
|
|
listen = "0.0.0.0";
|
|
port = 7891;
|
|
protocol = "socks";
|
|
settings = {
|
|
auth = "noauth";
|
|
udp = true;
|
|
};
|
|
}
|
|
|
|
# for monitoring
|
|
{
|
|
"tag" = "api";
|
|
"listen" = "127.0.0.1";
|
|
"port" = 54321;
|
|
"protocol" = "dokodemo-door";
|
|
"settings" = {
|
|
"address" = "127.0.0.1";
|
|
};
|
|
}
|
|
];
|
|
outbounds = [
|
|
# forward traffic directly via system's default network(to dae proxy running on aquamarine)
|
|
{
|
|
protocol = "freedom";
|
|
tag = "freedom";
|
|
}
|
|
];
|
|
|
|
# for monitoring
|
|
"routing" = {
|
|
"rules" = [
|
|
{
|
|
"inboundTag" = [
|
|
"api"
|
|
];
|
|
"outboundTag" = "api";
|
|
"type" = "field";
|
|
}
|
|
];
|
|
};
|
|
};
|
|
};
|
|
|
|
# https://github.com/NixOS/nixpkgs/blob/nixos-26.05/nixos/modules/services/monitoring/prometheus/exporters/v2ray.nix
|
|
# https://github.com/wi1dcard/v2ray-exporter
|
|
services.prometheus.exporters.v2ray = {
|
|
enable = true;
|
|
listenAddress = "0.0.0.0";
|
|
port = 9153;
|
|
openFirewall = false;
|
|
v2rayEndpoint = "127.0.0.1:54321";
|
|
};
|
|
}
|