liv/nixos-config
1
0
Fork 0
mirror of https://github.com/Ahwxorg/nixos-config.git synced 2025-12-04 15:00:13 +01:00
Code Issues 1 Projects Releases Packages Wiki Activity Actions

feat: open all ports on 40gbit nic as its a local link

Browse source
This commit is contained in:
Ahwx 2025-08-05 21:48:15 +02:00
parent ac6f4b4fcd
commit d35ded419e
1 changed files with 27 additions and 12 deletions
Download patch file Download diff file Expand all files Collapse all files

39
hosts/dandelion/default.nix
View file

@ -16,8 +16,6 @@
"ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOLdcB5JFWx6OK2BAr8J0wPHNhr2VP2/Ci6fv3a+DPfo liv@violet" # allow violet to log in over ssh to do back ups
];
networking.hostName = "dandelion";
liv.server.enable = true;
nixpkgs.config.permittedInsecurePackages = [
@ -27,8 +25,34 @@
time.timeZone = "Europe/Amsterdam";
networking = {
hostName = "dandelion";
firewall = {
allowedTCPPorts = [
5201
];
allowedUDPPorts = [
5201
];
interfaces."ens4s1".allowedTCPPorts = [
# allow everything for local link
{
from = 1;
to = 65354;
}
];
interfaces."ens4s1".allowedUDPPorts = [
# allow everything for local link
{
from = 1;
to = 65354;
}
];
};
};
systemd.network.networks."99-local" = {
matchConfig.name = "ens3s1";
matchConfig.name = "ens4s1";
address = [
"192.168.1.100/24"
];
@ -40,15 +64,6 @@
];
};
networking.firewall = {
allowedTCPPorts = [
5201
];
allowedUDPPorts = [
5201
];
};
environment.systemPackages = with pkgs; [
kitty.terminfo
zfs