1 files changed, 1 insertions, 0 deletions
diff --git a/modules/yggdrasil-wg/default.nix b/modules/yggdrasil-wg/default.nix
index e81fee84..d0d6e522 100644
--- a/modules/yggdrasil-wg/default.nix
+++ b/modules/yggdrasil-wg/default.nix
@@ -91,6 +91,7 @@ in {
    networking.hosts = mkIf inNetwork (listToAttrs (concatMap ({name, value}: map (ip: nameValuePair (stripSubnet ip) ["${name}.yggdrasil"]) value) (mapAttrsToList nameValuePair hostIPs)));
+    systemd.services.firewall.path = optionals isRouter [pkgs.procps];
    networking.firewall = mkIf isRouter {
      extraCommands = ''
        iptables -A FORWARD -i yggdrasil -o yggdrasil -j nixos-fw-accept

diff --git a/modules/yggdrasil-wg/default.nix b/modules/yggdrasil-wg/default.nix index e81fee84..d0d6e522 100644 --- a/modules/yggdrasil-wg/default.nix +++ b/modules/yggdrasil-wg/default.nix
@@ -91,6 +91,7 @@ in {
91		91
92	networking.hosts = mkIf inNetwork (listToAttrs (concatMap ({name, value}: map (ip: nameValuePair (stripSubnet ip) ["${name}.yggdrasil"]) value) (mapAttrsToList nameValuePair hostIPs)));	92	networking.hosts = mkIf inNetwork (listToAttrs (concatMap ({name, value}: map (ip: nameValuePair (stripSubnet ip) ["${name}.yggdrasil"]) value) (mapAttrsToList nameValuePair hostIPs)));
93		93
		94	systemd.services.firewall.path = optionals isRouter [pkgs.procps];
94	networking.firewall = mkIf isRouter {	95	networking.firewall = mkIf isRouter {
95	extraCommands = ''	96	extraCommands = ''
96	iptables -A FORWARD -i yggdrasil -o yggdrasil -j nixos-fw-accept	97	iptables -A FORWARD -i yggdrasil -o yggdrasil -j nixos-fw-accept