10 lines
232 B
Nix
10 lines
232 B
Nix
{config, ...}: {
|
|
networking.firewall = {
|
|
enable = true;
|
|
trustedInterfaces = ["eno1" "tailscale0"];
|
|
allowedUDPPorts = [config.services.tailscale.port];
|
|
allowedTCPPorts = [22];
|
|
checkReversePath = "loose";
|
|
};
|
|
}
|