summaryrefslogtreecommitdiff
path: root/modules/server/virtualisation.nix
diff options
context:
space:
mode:
authorFuwn <[email protected]>2024-09-20 06:48:10 -0700
committerFuwn <[email protected]>2024-09-20 06:48:10 -0700
commitb11667a8b0335709f5a3ac73c89b967bd8e352e9 (patch)
treed6332afcaf4d8eb11dbe096b9012b11f9eac748b /modules/server/virtualisation.nix
parentjust: ensure git add (diff)
downloadnixos-config-b11667a8b0335709f5a3ac73c89b967bd8e352e9.tar.xz
nixos-config-b11667a8b0335709f5a3ac73c89b967bd8e352e9.zip
server: restrict open ports
Diffstat (limited to 'modules/server/virtualisation.nix')
-rw-r--r--modules/server/virtualisation.nix9
1 files changed, 8 insertions, 1 deletions
diff --git a/modules/server/virtualisation.nix b/modules/server/virtualisation.nix
index 0bda69e..151cd9d 100644
--- a/modules/server/virtualisation.nix
+++ b/modules/server/virtualisation.nix
@@ -5,7 +5,14 @@ in
{
virtualisation = {
containers.enable = true;
- docker.enable = containerEngine == "docker";
+
+ docker = {
+ enable = containerEngine == "docker";
+
+ daemon.settings = {
+ iptables = false;
+ };
+ };
podman = {
enable = containerEngine == "podman";
generated by cgit v1.2.3 (git 2.25.1) at 2026-05-11 12:31:11 +0000