Mic92/stockholm
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

l retiolum: open configured tinc port

Browse Source
This commit is contained in:
lassulus 2017-09-19 11:51:22 +02:00
parent c83cd3492a
commit 2d1160c062
2 changed files with 6 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
lass/1systems/dishfire/config.nix
View File

@ -88,7 +88,6 @@
};
krebs.iptables.tables.filter.INPUT.rules = [
{ predicate = "-p tcp --dport smtp"; target = "ACCEPT"; }
{ predicate = "-p tcp --dport 993"; target = "ACCEPT"; }
];
}
];

10
lass/2configs/retiolum.nix
View File

@ -1,12 +1,14 @@
{ pkgs, ... }:
{ config, pkgs, ... }:
{
krebs.iptables = {
tables = {
filter.INPUT.rules = [
{ predicate = "-p tcp --dport tinc"; target = "ACCEPT"; }
{ predicate = "-p udp --dport tinc"; target = "ACCEPT"; }
filter.INPUT.rules = let
tincport = toString config.krebs.build.host.nets.retiolum.tinc.port;
in [
{ predicate = "-p tcp --dport ${tincport}"; target = "ACCEPT"; }
{ predicate = "-p udp --dport ${tincport}"; target = "ACCEPT"; }
];
};
};