kiara/Fediversity
1
0
Fork 0
forked from fediversity/fediversity
Code Pull requests Activity

plug hole in firewall

Browse source 
format
This commit is contained in:
Kiara Grouwstra 2025-08-04 10:34:50 +02:00
parent a99de6c626
commit e21a9ea70a
Signed by: kiara
SSH key fingerprint: SHA256:COspvLoLJ5WC5rFb9ZDe5urVCkK4LJZOsjfF4duRJFU
1 changed files with 12 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
machines/dev/fedi203/woodpecker.nix
View file

@ -203,13 +203,19 @@
networking = { networking = {
nftables.enable = lib.mkForce false; nftables.enable = lib.mkForce false;
}; firewall = {
allowedTCPPorts = [
networking.firewall.allowedTCPPorts = [
22 22
80 80
443 443
]; ];
# needed for podman to be able to talk over dns
interfaces."podman0" = {
allowedUDPPorts = [ 53 ];
allowedTCPPorts = [ 53 ];
};
};
};
virtualisation.podman = { virtualisation.podman = {
enable = true; enable = true;