From 0a16ebf428d366d0a0282cf457b2d574f38b7dfc Mon Sep 17 00:00:00 2001
From: "RingOfStorms (Joshua Bell)" <ringofstorms@gmail.com>
Date: Wed, 30 Apr 2025 14:53:00 -0500
Subject: [PATCH] enable adguard home

---
 hosts/h001/flake.nix            |  1 +
 hosts/h001/mods/adguardhome.nix | 28 +++++++++++++++++++++++++++-
 2 files changed, 28 insertions(+), 1 deletion(-)

diff --git a/hosts/h001/flake.nix b/hosts/h001/flake.nix
index be29882..e224050 100644
--- a/hosts/h001/flake.nix
+++ b/hosts/h001/flake.nix
@@ -37,6 +37,7 @@
                 {
                   environment.systemPackages = with pkgs; [
                     lua
+                    sqlite
                   ];
 
                   ringofstorms_common = {
diff --git a/hosts/h001/mods/adguardhome.nix b/hosts/h001/mods/adguardhome.nix
index a631614..8f3d86b 100644
--- a/hosts/h001/mods/adguardhome.nix
+++ b/hosts/h001/mods/adguardhome.nix
@@ -6,7 +6,33 @@
     services.adguardhome = {
       enable = true;
       allowDHCP = true;
-      openFirewall = true;
+      openFirewall = false;
+    };
+
+    networking.firewall.allowedTCPPorts = [
+      53
+      67
+      68
+      5543
+    ];
+    networking.firewall.allowedUDPPorts = [
+      53
+      67
+      68
+      784
+      853
+      8853
+      5443
+    ];
+
+    services.nginx = {
+      virtualHosts = {
+        "h001.net.joshuabell.xyz  " = {
+          locations."/" = {
+            proxyPass = "http://localhost:3000";
+          };
+        };
+      };
     };
   };
 }