Mic92/stockholm
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

l retiolum: open configured tinc port

Browse Source
This commit is contained in:
lassulus 2017-09-19 11:51:22 +02:00
parent c83cd3492a
commit 2d1160c062
2 changed files with 6 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
lass/1systems/dishfire/config.nix
View File

@ -88,7 +88,6 @@
}; };
krebs.iptables.tables.filter.INPUT.rules = [ krebs.iptables.tables.filter.INPUT.rules = [
{ predicate = "-p tcp --dport smtp"; target = "ACCEPT"; } { predicate = "-p tcp --dport smtp"; target = "ACCEPT"; }
{ predicate = "-p tcp --dport 993"; target = "ACCEPT"; }
]; ];
} }
]; ];

10
lass/2configs/retiolum.nix
View File

@ -1,12 +1,14 @@
{ pkgs, ... }: { config, pkgs, ... }:
{ {
krebs.iptables = { krebs.iptables = {
tables = { tables = {
filter.INPUT.rules = [ filter.INPUT.rules = let
{ predicate = "-p tcp --dport tinc"; target = "ACCEPT"; } tincport = toString config.krebs.build.host.nets.retiolum.tinc.port;
{ predicate = "-p udp --dport tinc"; target = "ACCEPT"; } in [
{ predicate = "-p tcp --dport ${tincport}"; target = "ACCEPT"; }
{ predicate = "-p udp --dport ${tincport}"; target = "ACCEPT"; }
]; ];
}; };
}; };