diff options
author | Gregor Kleen <gkleen@yggdrasil.li> | 2015-06-16 20:48:08 +0200 |
---|---|---|
committer | Gregor Kleen <gkleen@yggdrasil.li> | 2015-06-16 20:48:08 +0200 |
commit | 48dce5d6d9d19e9c560313461574152dbb795487 (patch) | |
tree | 02ceef780467ee5545d8c4dfeb15afed5b58353d | |
parent | 68a238106319089e1af7dd65d1668ffde4007278 (diff) | |
download | nixos-48dce5d6d9d19e9c560313461574152dbb795487.tar nixos-48dce5d6d9d19e9c560313461574152dbb795487.tar.gz nixos-48dce5d6d9d19e9c560313461574152dbb795487.tar.bz2 nixos-48dce5d6d9d19e9c560313461574152dbb795487.tar.xz nixos-48dce5d6d9d19e9c560313461574152dbb795487.zip |
networking.firewall
-rw-r--r-- | bragi.nix | 13 |
1 files changed, 9 insertions, 4 deletions
@@ -20,10 +20,6 @@ | |||
20 | networking.hostId = "2af11085"; | 20 | networking.hostId = "2af11085"; |
21 | networking.wireless.enable = true; | 21 | networking.wireless.enable = true; |
22 | 22 | ||
23 | networking.firewall = { | ||
24 | enable = false; | ||
25 | }; | ||
26 | |||
27 | nixpkgs.config.packageOverrides = pkgs: | 23 | nixpkgs.config.packageOverrides = pkgs: |
28 | { | 24 | { |
29 | trivmix = let trivmix = pkgs.haskellPackages.callPackage ./custom/trivmix.nix {}; in | 25 | trivmix = let trivmix = pkgs.haskellPackages.callPackage ./custom/trivmix.nix {}; in |
@@ -180,6 +176,15 @@ | |||
180 | ]; | 176 | ]; |
181 | }; | 177 | }; |
182 | 178 | ||
179 | networking.firewall = { | ||
180 | enable = true; | ||
181 | allowPing = true; | ||
182 | allowTCPPorts = [ 22 | ||
183 | ]; | ||
184 | allowUDPPortRanges = [ { from = 60000; to = 61000; } # mosh | ||
185 | ]; | ||
186 | }; | ||
187 | |||
183 | services.dhcpd = { | 188 | services.dhcpd = { |
184 | enable = true; | 189 | enable = true; |
185 | interfaces = "enp1s0"; | 190 | interfaces = "enp1s0"; |