tailscale

author: Fuwn <[email protected]> 2024-09-03 18:02:42 -0700
committer: Fuwn <[email protected]> 2024-09-03 18:02:42 -0700
commit: a59aebb4834262c549a4260d0164ae1c9f895384 (patch)
tree: ba57cc8bb6df045829165fc2833f400fec95969e /modules/networking
parent: harden ssh (diff)
download: nixos-config-a59aebb4834262c549a4260d0164ae1c9f895384.tar.xz
nixos-config-a59aebb4834262c549a4260d0164ae1c9f895384.zip
1 files changed, 1 insertions, 7 deletions
diff --git a/modules/networking/firewall.nix b/modules/networking/firewall.nix
index 8077042..d389bff 100644
--- a/modules/networking/firewall.nix
+++ b/modules/networking/firewall.nix
@@ -3,17 +3,11 @@
     enable = true;
     allowedUDPPorts = [ 53 ];
     allowPing = false;
+    trustedInterfaces = [ "tailscale0" ];
 
     allowedTCPPorts = [
       80
       443
     ];
-
-    allowedUDPPortRanges = [
-      {
-        from = 60000;
-        to = 61000;
-      }
-    ];
   };
 }
author	Fuwn <[email protected]>	2024-09-03 18:02:42 -0700
committer	Fuwn <[email protected]>	2024-09-03 18:02:42 -0700
commit	a59aebb4834262c549a4260d0164ae1c9f895384 (patch)
tree	ba57cc8bb6df045829165fc2833f400fec95969e /modules/networking
parent	harden ssh (diff)
download	nixos-config-a59aebb4834262c549a4260d0164ae1c9f895384.tar.xz nixos-config-a59aebb4834262c549a4260d0164ae1c9f895384.zip