Explore Flying Circus NixOS Options

Whether to enable FC-customized nginx.

Configuration lines to be appended inside of the http {} block.

Declarative vhost config

Configures a timeout (seconds) for a graceful shutdown of worker processes. When the time expires, nginx will try to close all the connections currently open to facilitate shutdown. By default, nginx will try to close connections 4 minutes after a reload.

Addresses to listen on if a vhost does not specify any.

Disable the suggested mitigations against the D(HE)at Attack

Configures how often log files are rotated before being removed. If count is 0, old versions are removed rather than rotated.

Configures a separate access and error log in the /var/log/nginx directory for each virtualHost.

Whether to enable Global rate limiting.

Sets the maximum number of requests per second per client.

Sets the maximum number of concurrent requests per client.

Sets the maximum number of requests to delay/queue if exceeding the rate limit.

IPv6 address to listen on. If neither <option>listenAddress</option> nor <option>listenAddress6</option> is set, the service listens on the frontend addresses.

If you need more options, use <option>listen</option>. If you want to configure any number of IPs use <literal>listenAddresses</literal>.

Basic Auth protection for a vhost.

WARNING: This is implemented to store the password in plain text in the Nix store.

Whether to ask Let's Encrypt to sign a certificate for this vhost. Alternately, you can use an existing certificate through <option>useACMEHost</option>.