diff --git a/hosts/pulsebert/configuration.nix b/hosts/pulsebert/configuration.nix
index 4669f866..3b0d572b 100644
--- a/hosts/pulsebert/configuration.nix
+++ b/hosts/pulsebert/configuration.nix
@@ -46,6 +46,7 @@ in {
tmux
vim
git
+ openssl
# NCurses Music Player Client (Plus Plus)
# a commandline front-end client for mpd
# 2019-01-21 mag vater gern gleich einen schoenen lokalen Verwaltung fuer MPD haben.
@@ -75,12 +76,62 @@ in {
80 443 # Web/ympd
6600 # mpd
];
- # networking.firewall.allowedUDPPorts = [ ... ];
+ networking.firewall.allowedUDPPorts = [
+ 631
+ ];
+ networking.firewall.extraCommands = ''
+ iptables -I INPUT -p udp --dport mdns -d 224.0.0.251 -j ACCEPT # zeroconf
+ iptables -I OUTPUT -p udp --dport mdns -d 224.0.0.251 -j ACCEPT # zeroconf
+ ''; # networking.firewall.allowedUDPPorts = [ ... ];
# Or disable the firewall altogether.
# networking.firewall.enable = false;
# Enable CUPS to print documents.
- services.printing.enable = true;
+ services.printing = {
+ enable = true;
+ browsing = true;
+ listenAddresses = [ "*:631" ];
+ defaultShared = true;
+ # logLevel = "debug";
+ drivers = [ pkgs.gutenprint pkgs.hplip pkgs.splix ];
+ extraConf =
+ ''
+ DefaultAuthType Basic
+
+ Order allow,deny
+ Allow ALL
+
+
+ Order allow,deny
+ Allow ALL
+
+
+ AuthType Basic
+ Require user @SYSTEM
+ Order allow,deny
+ Allow ALL
+
+
+
+ Require user @OWNER @SYSTEM
+ Order deny,allow
+
+
+ AuthType Basic
+ Require user @SYSTEM
+ Order deny,allow
+
+
+ Require user @OWNER @SYSTEM
+ Order deny,allow
+
+
+ Order deny,allow
+
+
+ '';
+
+ };
# Enable sound.
sound.enable = true;