diff options
| author | Gregor Kleen <gkleen@yggdrasil.li> | 2018-04-22 12:21:23 +0200 |
|---|---|---|
| committer | Gregor Kleen <gkleen@yggdrasil.li> | 2018-04-22 12:21:23 +0200 |
| commit | 2b8305f26b975fa91a3828c70dadea02e15dc808 (patch) | |
| tree | 0e6e9d4a49f591ee86efb6930c4cb78b582ae0c1 | |
| parent | 9815ad5715468d0dd84fc2106a310c8e86a579b3 (diff) | |
| download | nixos-2b8305f26b975fa91a3828c70dadea02e15dc808.tar nixos-2b8305f26b975fa91a3828c70dadea02e15dc808.tar.gz nixos-2b8305f26b975fa91a3828c70dadea02e15dc808.tar.bz2 nixos-2b8305f26b975fa91a3828c70dadea02e15dc808.tar.xz nixos-2b8305f26b975fa91a3828c70dadea02e15dc808.zip | |
No firewall on bragi
| -rw-r--r-- | bragi.nix | 16 |
1 files changed, 1 insertions, 15 deletions
| @@ -52,21 +52,7 @@ in rec { | |||
| 52 | useDHCP = true; | 52 | useDHCP = true; |
| 53 | }; | 53 | }; |
| 54 | 54 | ||
| 55 | firewall = { | 55 | firewall.enable = false; |
| 56 | enable = true; | ||
| 57 | allowPing = true; | ||
| 58 | allowedTCPPorts = [ 22 # SSH | ||
| 59 | 80 # HTTP | ||
| 60 | 5432 # PostgreSQL | ||
| 61 | 6600 # MPD | ||
| 62 | 139 445 # SAMBA | ||
| 63 | ]; | ||
| 64 | allowedUDPPorts = [ 137 138 # SAMBA | ||
| 65 | 67 # DHCP | ||
| 66 | ]; | ||
| 67 | allowedUDPPortRanges = [ { from = 60000; to = 61000; } # mosh | ||
| 68 | ]; | ||
| 69 | }; | ||
| 70 | 56 | ||
| 71 | defaultMailServer = { | 57 | defaultMailServer = { |
| 72 | directDelivery = true; | 58 | directDelivery = true; |