Set firewall rules.

2025-07-21 13:28:43 -04:00 · 2025-07-21 13:28:43 -04:00 · 440aca54c7
commit 440aca54c7
parent 71934ea2a5
1 changed files with 15 additions and 4 deletions
--- a/hosts/router/default.nix
+++ b/hosts/router/default.nix
@ -30,10 +30,20 @@
  networking = {
    hostName = "router";
    hostId = "91312b0b";
-    firewall.allowedTCPPorts = [
+    firewall = {
-      80
+      interfaces.lan = {
-      443
+        allowedUDPPorts = [
-    ];
+          53
          67
        ];
        allowedTCPPorts = [
          53
          67
          80
          443
        ];
      };
    };
    useNetworkd = true;
    bridges = {
      lan = {
@ -98,6 +108,7 @@
        };
      };
    };
    caddy = {
      enable = true;
      virtualHosts."router.tailc50184.ts.net".extraConfig = ''