stockholm/old/modules/lass/iptables/options.nix

{ lib, ... }:

let
  inherit (lib) mkEnableOption mkOption types;
in

{
  enable = mkEnableOption "iptables";

  #tables.filter.INPUT = {
  # policy = "DROP";
  # rules = [
  #   { predicate = "-i retiolum"; target = "ACCEPT"; priority = -10; }
  # ];
  #};
  #new api
  tables = mkOption {
    type = with types; attrsOf (attrsOf (submodule ({
      options = {
        policy = mkOption {
          type = str;
          default = "-";
        };
        rules = mkOption {
          type = nullOr (listOf (submodule ({
            options = {
              predicate = mkOption {
                type = str;
              };
              target = mkOption {
                type = str;
              };
              precedence = mkOption {
                type = int;
                default = 0;
              };
            };
          })));
          default = null;
        };
      };
    })));
  };
}
"rebase" 2015-07-13 11:39:49 +00:00			`{ lib, ... }:`

			`let`
			`inherit (lib) mkEnableOption mkOption types;`
			`in`

			`{`
			`enable = mkEnableOption "iptables";`

			`#tables.filter.INPUT = {`
			`# policy = "DROP";`
			`# rules = [`
			`# { predicate = "-i retiolum"; target = "ACCEPT"; priority = -10; }`
			`# ];`
			`#};`
			`#new api`
			`tables = mkOption {`
			`type = with types; attrsOf (attrsOf (submodule ({`
			`options = {`
			`policy = mkOption {`
			`type = str;`
			`default = "-";`
			`};`
			`rules = mkOption {`
			`type = nullOr (listOf (submodule ({`
			`options = {`
			`predicate = mkOption {`
			`type = str;`
			`};`
			`target = mkOption {`
			`type = str;`
			`};`
			`precedence = mkOption {`
			`type = int;`
			`default = 0;`
			`};`
			`};`
			`})));`
			`default = null;`
			`};`
			`};`
			`})));`
			`};`
			`}`