From 6f84682e91bc6cb3e1f627398a7bc8d53faadaf2 Mon Sep 17 00:00:00 2001
From: Kiara Grouwstra <kiara@procolix.eu>
Date: Tue, 5 Aug 2025 17:16:21 +0200
Subject: [PATCH] revert nftables ruleset

---
 infra/common/nixos/nftables-ruleset.nft | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/infra/common/nixos/nftables-ruleset.nft b/infra/common/nixos/nftables-ruleset.nft
index 985240f5..0bd23c33 100644
--- a/infra/common/nixos/nftables-ruleset.nft
+++ b/infra/common/nixos/nftables-ruleset.nft
@@ -43,7 +43,7 @@ table inet filter {
         ip6 nexthdr icmpv6 icmpv6 type { destination-unreachable, echo-reply, echo-request, nd-neighbor-solicit,  nd-router-advert, nd-neighbor-advert, packet-too-big, parameter-problem, time-exceeded } accept
 
         # open tcp ports: sshd (22)
-        tcp dport ssh accept
+        tcp dport {ssh} accept
 
         # open tcp ports: snmp (161)
         ip saddr $snmp_allow udp dport {snmp} accept