3 files changed, 44 insertions, 7 deletions

diff --git a/components/services/bind.nix b/components/services/bind.nix
index 7d7cc81..5ff9be9 100644
--- a/components/services/bind.nix
+++ b/components/services/bind.nix
@@ -13,6 +13,7 @@
           allowQuery = [ "127.0.0.0/24" "10.69.0.0/24" ];
           file = pkgs.writeText "home.arpa" ''
             $TTL 86400
+
             @ IN SOA ns1.home.arpa. admin.home.arpa. (
               2026031801 ; serial
               3600       ; refresh
@@ -20,9 +21,16 @@
               604800     ; expire
               86400      ; minimum TTL
             )
+
             @   IN NS  ns1.home.arpa.
             ns1 IN A   10.69.0.1
             @   IN A   10.69.0.1
+
+            music   IN CNAME @
+            images  IN CNAME @
+            papers  IN CNAME @
+            cinema  IN CNAME @
+            torrent IN CNAME @
           '';
         };
       };
diff --git a/components/services/caddy.nix b/components/services/caddy.nix
index 8c112c8..4203d4a 100644
--- a/components/services/caddy.nix
+++ b/components/services/caddy.nix
@@ -17,17 +17,42 @@
           file_server browse
         '';
 
+        "music.home.leoflo.me".extraConfig = ''
+          reverse_proxy 10.69.0.2:9001
+        '';
+
+        "cinema.home.leoflo.me".extraConfig = ''
+          reverse_proxy 10.69.0.2:9004
+        '';
+
         "home.arpa".extraConfig = ''
           respond "Benvenuto nella rete privata di leo :D"
           tls internal
         '';
 
-        "music.home.leoflo.me".extraConfig = ''
+        "music.home.arpa".extraConfig = ''
           reverse_proxy 10.69.0.2:9001
+          tls internal
         '';
 
-        "cinema.home.leoflo.me".extraConfig = ''
+        "images.home.arpa".extraConfig = ''
+          reverse_proxy 10.69.0.2:9002
+          tls internal
+        '';
+
+        "papers.home.arpa".extraConfig = ''
+          reverse_proxy 10.69.0.2:9003
+          tls internal
+        '';
+
+        "cinema.home.arpa".extraConfig = ''
           reverse_proxy 10.69.0.2:9004
+          tls internal
+        '';
+
+        "torrent.home.arpa".extraConfig = ''
+          reverse_proxy 10.69.0.2:9005
+          tls internal
         '';
       };
     };
diff --git a/systems/afrodite/networking.nix b/systems/afrodite/networking.nix
index e55e21d..7fd425b 100644
--- a/systems/afrodite/networking.nix
+++ b/systems/afrodite/networking.nix
@@ -25,21 +25,25 @@
 
       peers = [
         {
+          # odino
           publicKey = "GX/1ks+T1OcBsW7XiMIN1k2/azaCWH69eGh9dltfJhU=";
           allowedIPs = [ "10.69.0.2/32" ];
           persistentKeepalive = 25;
         }
         {
+          # hermes
           publicKey = "99XBoIZ55yradB45bDZ94fc1IQGkNp9argWaT2otRBU=";
           allowedIPs = [ "10.69.0.3/32" ];
           persistentKeepalive = 25;
         }
-        #{
-        #  publicKey = "";
-        #  allowedIPs = [ "10.69.0.4/32" ];
-        #  persistentKeepalive = 25;
-        #}
         {
+          # zeus
+          publicKey = "cR1TRWLX8DqZtOEOR7djqlX0ewy648h8oHaZkW9JUjU=";
+          allowedIPs = [ "10.69.0.4/32" ];
+          persistentKeepalive = 25;
+        }
+        {
+          # ares
           publicKey = "bMgACe4Pp2VQ0lpMb0Q2RVw/n5KIIg20xT90eesxcEw=";
           allowedIPs = [ "10.69.0.5/32" ];
           persistentKeepalive = 25;