Trust tailscale interface and all containers

This commit is contained in:
Johannes Rothe 2025-03-26 22:48:12 +01:00
parent 896331cefb
commit c2328f08d0

View File

@ -46,7 +46,8 @@
firewall = {
enable = true;
allowedUDPPorts = [ 53 ];
allowedTCPPorts = [ 80 443];
allowedTCPPorts = [ 80 443 ];
trustedInterfaces = [ "tailscale0" ];
};
# head -c4 /dev/urandom | od -A none -t x4
# Required for ZFS, see https://openzfs.github.io/openzfs-docs/Getting%20Started/NixOS/index.html
@ -271,7 +272,7 @@
networking.nat = {
enable = true;
internalInterfaces = [ "ve-searx" ];
internalInterfaces = [ "ve-*" ];
externalInterface = "eno1";
};