erwin/nixos-config
1
0
Fork 0
Code Issues 1 Pull requests Projects 1 Releases Wiki Activity Actions

mimir: Enable nftables

Browse source
This commit is contained in:
Erwin Boskma 2023-12-20 11:46:13 +01:00
parent cd41c2eb39
commit ae7c163446
Signed by: erwin
SSH key fingerprint: SHA256:OCinH/khuGY1LA9RG8YLM8GNH6C1DDXBdy3SNE+I5Hw
1 changed files with 2 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
machines/mimir/configuration.nix
View file

@ -1,7 +1,3 @@
# Edit this configuration file to define what should be installed on
# your system. Help is available in the configuration.nix(5) man page
# and in the NixOS manual (accessible by running nixos-help).
{ nixos-hardware, microvm, nix-ld-rs, ... }: { nixos-hardware, microvm, nix-ld-rs, ... }:
{ pkgs, config, ... }: { pkgs, config, ... }:
{ {
@ -173,6 +169,8 @@
networkmanager.enable = false; networkmanager.enable = false;
useNetworkd = true; useNetworkd = true;
nftables.enable = true;
firewall = { firewall = {
trustedInterfaces = [ "lo" "tailscale0" ]; trustedInterfaces = [ "lo" "tailscale0" ];