onjen/nixos-config
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Trust tailscale interface and all containers

Browse Source
This commit is contained in:
Johannes Rothe 2025-03-26 22:48:12 +01:00
parent 896331cefb
commit c2328f08d0
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
hosts/dalinar/default.nix
View File

@ -46,7 +46,8 @@
firewall = { firewall = {
enable = true; enable = true;
allowedUDPPorts = [ 53 ]; allowedUDPPorts = [ 53 ];
allowedTCPPorts = [ 80 443]; allowedTCPPorts = [ 80 443 ];
trustedInterfaces = [ "tailscale0" ];
}; };
# head -c4 /dev/urandom | od -A none -t x4 # head -c4 /dev/urandom | od -A none -t x4
# Required for ZFS, see https://openzfs.github.io/openzfs-docs/Getting%20Started/NixOS/index.html # Required for ZFS, see https://openzfs.github.io/openzfs-docs/Getting%20Started/NixOS/index.html
@ -271,7 +272,7 @@
networking.nat = { networking.nat = {
enable = true; enable = true;
internalInterfaces = [ "ve-searx" ]; internalInterfaces = [ "ve-*" ];
externalInterface = "eno1"; externalInterface = "eno1";
}; };