Add firewall config

2022-09-26 12:05:41 +02:00 · 2022-09-26 12:05:41 +02:00 · 5777182658
commit 5777182658
parent 26cd4f804c
1 changed files with 122 additions and 107 deletions
--- a/flake.nix
+++ b/flake.nix
@ -7,7 +7,8 @@
  };

  outputs = { self, nixpkgs, flake-utils }:
-    flake-utils.lib.eachSystem [ "x86_64-linux" ] (system:
+    flake-utils.lib.eachSystem [ "x86_64-linux" ]
+      (system:
        let
          pkgs = nixpkgs.legacyPackages.${system};
          lib = nixpkgs.lib;
@ -119,6 +120,20 @@
              capabilities = "cap_sys_admin+p";
              source = "${sunshine}/bin/sunshine";
            };
+
+            networking.firewall = mkIf cfg.openFirewall {
+              allowedTCPPorts = [
+                48010
+              ];
+
+              allowedTCPPortRanges = [
+                { from = 47984; to = 47990; }
+              ];
+
+              allowedUDPPortRanges = [
+                { from = 47998; to = 48000; }
+              ];
+            };
          };
        };
    };