From 3cb057a31afdcc80b82051352db35244ce12ec55 Mon Sep 17 00:00:00 2001
From: Filippo Berto <berto.f@protonmail.com>
Date: Thu, 16 Oct 2025 15:08:02 +0200
Subject: [PATCH] fix(baldur): fail2ban nginx configuration

---
 instances/baldur/configuration.nix | 28 ++++++++++++++++------------
 1 file changed, 16 insertions(+), 12 deletions(-)

diff --git a/instances/baldur/configuration.nix b/instances/baldur/configuration.nix
index 0a375a0..866a21a 100644
--- a/instances/baldur/configuration.nix
+++ b/instances/baldur/configuration.nix
@@ -51,18 +51,22 @@
       enable = true;
       bantime-increment.enable = true;
       jails = {
-        "nginx-botsearch" = ''
-          filter = nginx-botsearch
-          action =  nftables-multiport[name=HTTP, port="http,https"]
-          logpath = /var/log/nginx/error.log*
-          backend = auto
-        '';
-        "nginx-http-auth" = ''
-          filter = nginx-http-auth
-          action =  nftables-multiport[name=HTTP, port="http,https"]
-          logpath = /var/log/nginx/error.log*
-          backend = auto
-        '';
+        "nginx-botsearch" = {
+          settings = {
+            filter = "nginx-botsearch";
+            action = ''nftables-multiport[name=HTTP, port="http,https"]'';
+            logpath = "/var/log/nginx/error.log*";
+            backend = "auto";
+          };
+        };
+        "nginx-http-auth" = {
+          settings = {
+            filter = "nginx-http-auth";
+            action = ''nftables-multiport[name=HTTP, port="http,https"]'';
+            logpath = "/var/log/nginx/error.log*";
+            backend = "auto";
+          };
+        };
       };
     };
     nginx = {