From b25d766fae2cd4c62096ed3229e6a7a5c1af4513 Mon Sep 17 00:00:00 2001
From: Ryan Horiguchi <ryan.horiguchi@gmail.com>
Date: Thu, 19 Sep 2024 00:11:38 +0200
Subject: [PATCH] Open web ports on any interface

---
 .../devices/headless/router/firewall.nix          | 15 +++++----------
 1 file changed, 5 insertions(+), 10 deletions(-)

diff --git a/configuration/devices/headless/router/firewall.nix b/configuration/devices/headless/router/firewall.nix
index f99a9c9d..02f61870 100644
--- a/configuration/devices/headless/router/firewall.nix
+++ b/configuration/devices/headless/router/firewall.nix
@@ -7,16 +7,11 @@ let
   serverIp = "192.168.2.2";
 in {
   networking = {
-    firewall.interfaces = let rules = { allowedTCPPorts = [ 80 443 ]; };
-    in {
-      "${externalInterface}" = rules;
-
-      "${internalInterface}" = rules;
-      "${internalInterface}.1" = rules;
-      "${internalInterface}.2" = rules;
-      "${internalInterface}.3" = rules;
-      "${internalInterface}.100" = rules;
-    };
+    firewall.allowedTCPPorts = [
+      # NGINX
+      80
+      443
+    ];
 
     nftables = {
       enable = true;