From 3eebbda08586176d5cf9eda92d2b12be29daa190 Mon Sep 17 00:00:00 2001
From: Kiara Grouwstra <kiara@procolix.eu>
Date: Mon, 4 Aug 2025 12:45:08 +0200
Subject: [PATCH] disable firewall nftables

disables nftables for woodpecker, just like for forgejo-ci
---
 machines/dev/fedi203/woodpecker.nix | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/machines/dev/fedi203/woodpecker.nix b/machines/dev/fedi203/woodpecker.nix
index 9fe994aa..d9475ddf 100644
--- a/machines/dev/fedi203/woodpecker.nix
+++ b/machines/dev/fedi203/woodpecker.nix
@@ -257,6 +257,10 @@
     };
   };
 
+  networking = {
+    nftables.enable = lib.mkForce false;
+  };
+
   networking.firewall.allowedTCPPorts = [
     22
     80