summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorGregor Kleen <gkleen@yggdrasil.li>2017-12-05 22:31:27 +0100
committerGregor Kleen <gkleen@yggdrasil.li>2017-12-05 22:31:27 +0100
commit976e692d0def820fe5a12eb918142ebeee4188ac (patch)
tree6ac88b9afe92e8e40c1033105490e8a63ffee67c
parenta6269b2a8ad2c390d31f2eef01c50ebc57d349db (diff)
downloadnixos-976e692d0def820fe5a12eb918142ebeee4188ac.tar
nixos-976e692d0def820fe5a12eb918142ebeee4188ac.tar.gz
nixos-976e692d0def820fe5a12eb918142ebeee4188ac.tar.bz2
nixos-976e692d0def820fe5a12eb918142ebeee4188ac.tar.xz
nixos-976e692d0def820fe5a12eb918142ebeee4188ac.zip
vsftp pasv
-rw-r--r--ymir.nix6
1 files changed, 6 insertions, 0 deletions
diff --git a/ymir.nix b/ymir.nix
index 2319fcfc..f3eea658 100644
--- a/ymir.nix
+++ b/ymir.nix
@@ -160,6 +160,8 @@ in rec {
160 allowedUDPPorts = [ 64738 # murmur 160 allowedUDPPorts = [ 64738 # murmur
161 53 # DNS 161 53 # DNS
162 ]; 162 ];
163 allowedTCPPortRanges = [ { from = 20000; to = 21000; } # ftp
164 ];
163 allowedUDPPortRanges = [ { from = 60000; to = 61000; } # mosh 165 allowedUDPPortRanges = [ { from = 60000; to = 61000; } # mosh
164 ]; 166 ];
165 }; 167 };
@@ -973,6 +975,10 @@ in rec {
973 rsaCertFile = "/var/lib/acme/yggdrasil.li/fullchain.pem"; 975 rsaCertFile = "/var/lib/acme/yggdrasil.li/fullchain.pem";
974 extraConfig = '' 976 extraConfig = ''
975 pam_service_name=vsftpd 977 pam_service_name=vsftpd
978
979 pasv_enable=true
980 pasv_max_port=20000
981 pasv_min_port=21000
976 ''; 982 '';
977 }; 983 };
978 984