nki/nix-home
1
0
Fork 0
Code Issues Pull requests 2 Packages Projects Releases Wiki Activity

Properly configure firewall to allow tinc to pass through

Browse source
This commit is contained in:
Natsu Kagami 2024-08-16 15:02:25 +02:00
parent 9fecd353f8
commit 41f717c5be
Signed by: nki
GPG key ID: 55A032EB38B49ADB
2 changed files with 6 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
modules/my-tinc/default.nix
View file

@ -78,6 +78,11 @@ in
# firewall # firewall
networking.firewall.allowedUDPPorts = [ 655 ]; networking.firewall.allowedUDPPorts = [ 655 ];
networking.firewall.allowedTCPPorts = [ 655 ]; networking.firewall.allowedTCPPorts = [ 655 ];
networking.firewall.interfaces."tinc.${networkName}" = {
allowedUDPPortRanges = [{ from = 0; to = 65535; }];
allowedTCPPortRanges = [{ from = 0; to = 65535; }];
};
# configure tinc service # configure tinc service
# ---------------------- # ----------------------

2
modules/services/nix-cache/default.nix
View file

@ -31,7 +31,7 @@ in
config = { config = {
nix.settings = mkIf cfg.enableClient { nix.settings = mkIf cfg.enableClient {
substituters = [ cfg.host ]; substituters = [ "http://${cfg.host}" ];
trusted-public-keys = [ cfg.publicKey ]; trusted-public-keys = [ cfg.publicKey ];
}; };