server: move allowed ports to modules

author: Fuwn <[email protected]> 2024-09-25 05:53:37 -0700
committer: Fuwn <[email protected]> 2024-09-25 05:53:37 -0700
commit: 69d27ebad3df9e086d2343403e8eb01ef1d9757d (patch)
tree: c2e20e8b067f127ae01baaeead2d028832f3aea1 /modules/server/networking
parent: virtualisation: enable podman (diff)
download: nixos-config-69d27ebad3df9e086d2343403e8eb01ef1d9757d.tar.xz
nixos-config-69d27ebad3df9e086d2343403e8eb01ef1d9757d.zip
2 files changed, 6 insertions, 14 deletions
diff --git a/modules/server/networking/caddy.nix b/modules/server/networking/caddy.nix
index 57481c4..809d5ef 100644
--- a/modules/server/networking/caddy.nix
+++ b/modules/server/networking/caddy.nix
@@ -1,4 +1,9 @@
 {
+  networking.firewall.allowedTCPPorts = [
+    80
+    443
+  ];
+
   services.caddy = {
     enable = true;
 
diff --git a/modules/server/networking/default.nix b/modules/server/networking/default.nix
index 386e961..f542304 100644
--- a/modules/server/networking/default.nix
+++ b/modules/server/networking/default.nix
@@ -6,19 +6,6 @@
 
   networking = {
     domain = "";
-
-    firewall = {
-      allowedUDPPorts = [ 53 ];
-
-      allowedTCPPorts = [
-        70
-        79
-        80
-        443
-        1965
-        5673
-        6650
-      ];
-    };
+    firewall.allowedUDPPorts = [ 53 ];
   };
 }
author	Fuwn <[email protected]>	2024-09-25 05:53:37 -0700
committer	Fuwn <[email protected]>	2024-09-25 05:53:37 -0700
commit	69d27ebad3df9e086d2343403e8eb01ef1d9757d (patch)
tree	c2e20e8b067f127ae01baaeead2d028832f3aea1 /modules/server/networking
parent	virtualisation: enable podman (diff)
download	nixos-config-69d27ebad3df9e086d2343403e8eb01ef1d9757d.tar.xz nixos-config-69d27ebad3df9e086d2343403e8eb01ef1d9757d.zip