From 435791bf7e93e1231bbaba018f1f021b36c27727 Mon Sep 17 00:00:00 2001
From: Kiara Grouwstra <kiara@procolix.eu>
Date: Mon, 4 Aug 2025 12:45:08 +0200
Subject: [PATCH] disable firewall nftables

disables nftables for woodpecker, just like for forgejo-ci
---
 machines/dev/fedi203/woodpecker.nix | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/machines/dev/fedi203/woodpecker.nix b/machines/dev/fedi203/woodpecker.nix
index bd8a37c9..aabe4e77 100644
--- a/machines/dev/fedi203/woodpecker.nix
+++ b/machines/dev/fedi203/woodpecker.nix
@@ -257,6 +257,10 @@
     };
   };
 
+  networking = {
+    nftables.enable = lib.mkForce false;
+  };
+
   networking.firewall.allowedTCPPorts = [
     22
     80