Skip to content

Commit

Permalink
Open web ports on any interface and move to file where it is used
Browse files Browse the repository at this point in the history
  • Loading branch information
@rhoriguchi
rhoriguchi committed Sep 18, 2024
1 parent 35cd529 commit 6014592
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 11 deletions.
11 changes: 0 additions & 11 deletions configuration/devices/headless/router/firewall.nix
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,17 +7,6 @@ let
serverIp = "192.168.2.2";
in {
networking = {
firewall.interfaces = let rules = { allowedTCPPorts = [ 80 443 ]; };
in {
"${externalInterface}" = rules;

"${internalInterface}" = rules;
"${internalInterface}.1" = rules;
"${internalInterface}.2" = rules;
"${internalInterface}.3" = rules;
"${internalInterface}.100" = rules;
};

nftables = {
enable = true;

Expand Down
2 changes: 2 additions & 0 deletions configuration/devices/headless/router/web-proxy.nix
View file
Original file line number Diff line number Diff line change
Expand Up @@ -42,4 +42,6 @@
locations."/".proxyPass = "http://XXLPitu-Server.local:80";
};
};

networking.firewall.allowedTCPPorts = [ config.services.nginx.defaultHTTPListenPort 443 ];
}

0 comments on commit 6014592

Please sign in to comment.