c3d2/nix-config
c3d2
/
nix-config
24
7
Fork 3
Code Issues 12 Pull Requests 2 Releases Wiki Activity

Try getting firewall to work 

somehow allowing ports does not have any effect.
Probably related to the Pi not being reboot save.
This commit is contained in:
Sandro - 2022-08-21 22:28:26 +02:00
parent 398133fa93
commit b3406003cb
Signed by: sandro
GPG Key ID: 3AF5A43A3EECC2E5
1 changed files with 21 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

27
hosts/pulsebert/default.nix
View File

@ -43,19 +43,34 @@
nix = { nix = {
buildCores = 4; buildCores = 4;
maxJobs = 2; maxJobs = 1;
}; };
networking = { networking = {
hostName = "pulsebert"; # Define your hostname. firewall = {
# broken...
enable = false;
allowedTCPPorts = [
80 # nginx
443 # nginx
4713 # pulseaudio/pipewire network sync
# 5353 # mdns
];
allowedUDPPorts = [
# 5353 # mdns
5355 # llmnr
];
};
hostName = "pulsebert";
# The global useDHCP flag is deprecated, therefore explicitly set to false here. # The global useDHCP flag is deprecated, therefore explicitly set to false here.
# Per-interface useDHCP will be mandatory in the future, so this generated config # Per-interface useDHCP will be mandatory in the future, so this generated config
# replicates the default behaviour. # replicates the default behaviour.
useDHCP = false; useDHCP = false;
interfaces.eth0.useDHCP = true; interfaces = {
interfaces.wlan0.useDHCP = true; eth0.useDHCP = true;
firewall.enable = false; wlan0.useDHCP = true;
};
}; };
environment.systemPackages = with pkgs; [ environment.systemPackages = with pkgs; [
@ -173,5 +188,5 @@
''; '';
}; };
system.stateVersion = "21.05"; # Did you read the comment? system.stateVersion = "21.05";
} }