zoe
/
nixos-old
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix firewall config

This commit is contained in:
zoe 2022-12-08 12:19:42 +01:00
parent d631c044a1
commit 1b9572e04d
2 changed files with 3 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
configuration.nix
View File

@ -157,17 +157,8 @@
# wireguard settings # wireguard settings
networking.firewall = { networking.firewall = {
# if packets are still dropped, they will show up in dmesg allowedUDPPorts = [ 51820 ];
logReversePathDrops = true; enable = true;
# wireguard trips rpfilter up
extraCommands = ''
ip46tables -t raw -I nixos-fw-rpfilter -p udp -m udp --sport 51820 -j RETURN
ip46tables -t raw -I nixos-fw-rpfilter -p udp -m udp --dport 51820 -j RETURN
'';
extraStopCommands = ''
ip46tables -t raw -D nixos-fw-rpfilter -p udp -m udp --sport 51820 -j RETURN || true
ip46tables -t raw -D nixos-fw-rpfilter -p udp -m udp --dport 51820 -j RETURN || true
'';
}; };
# This value determines the NixOS release from which the default # This value determines the NixOS release from which the default

1
user.nix
View File

@ -35,6 +35,7 @@
mpv mpv
yt-dlp yt-dlp
obs-studio obs-studio
ffmpeg
# images # images
feh feh