foodogsquared/nixos-config
1
0
Fork 0
mirror of https://github.com/foo-dogsquared/nixos-config.git synced 2025-02-07 12:19:07 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

docs: update "Deploying to Hetzner Cloud" section on Plover

Browse Source
This commit is contained in:
Gabriel Arazas 2023-01-18 15:43:30 +08:00
parent ecd8313011
commit cdfe983969
1 changed files with 13 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
hosts/plover/README.adoc
View File

@ -117,13 +117,18 @@ You can set up a firewall from Hetzner Cloud web UI but you can also deploy one
[source, shell]
----
hcloud firewall create --name plover-firewall
hcloud firewall create --name tcp-fw
hcloud firewall create --name udp-fw
hcloud firewall add-rule plover-firewall --direction in --protocol tcp --port 22 --description "Secure shells"
hcloud firewall add-rule plover-firewall --direction in --protocol tcp --port 80 --description "HTTP server"
hcloud firewall add-rule plover-firewall --direction in --protocol tcp --port 433 --description "HTTPS server"
hcloud firewall add-rule plover-firewall --direction in --protocol tcp --port 389 --description "LDAP server"
hcloud firewall add-rule plover-firewall --direction in --protocol tcp --port 636 --description "LDAPS server"
hcloud firewall add-rule tcp-fw --direction in --protocol tcp --port 22 --description "Secure shells"
hcloud firewall add-rule tcp-fw --direction in --protocol tcp --port 80 --description "HTTP server"
hcloud firewall add-rule tcp-fw --direction in --protocol tcp --port 433 --description "HTTPS server"
hcloud firewall add-rule tcp-fw --direction in --protocol tcp --port 389 --description "LDAP server"
hcloud firewall add-rule tcp-fw --direction in --protocol tcp --port 636 --description "LDAPS server"
hcloud firewall add-rule udp-fw --direction in --protocol udp --port 51820 --description "Wireguard"
hcloud firewall add-rule tcp-fw --direction in --protocol udp --port 389 --description "LDAP server"
hcloud firewall add-rule tcp-fw --direction in --protocol udp --port 636 --description "LDAPS server"
----
Next up, the networking setup which is composed of a public IP used for accessing some services and a private network used to communicate inside of the network.
@ -154,7 +159,8 @@ You could also easily create a server with `hcloud` with the following command:
[source, shell]
----
hcloud server create --location hel1 --type cx21 --image ubuntu-22.04 \
--firewall plover-firewall --network plover-local --network wide-wide-wan \
--firewall tcp-fw --firewall udp-fw \
--network plover-local --network wide-wide-wan \
--user-data-from-file ./files/hcloud/hcloud-user-data.yml \
--ssh-key foodogsquared@foodogsquared.one \
--name nixos-plover