shelvacu/colins-nix-files
1
0
Fork 0
forked from colin/nix-files
Code Pull Requests Activity

config/net: re-enable the firewall now that SMTP is operational

Browse Source
This commit is contained in:
Colin 2022-05-08 00:15:50 +00:00
parent b67882f32d
commit 55b043c80d
1 changed files with 13 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
config/net.nix
View File

@ -3,11 +3,19 @@
{ {
networking.domain = "uninsane.org"; networking.domain = "uninsane.org";
networking.firewall.enable = false; # networking.firewall.enable = false;
# networking.firewall.enable = true; networking.firewall.enable = true;
# networking.firewall.allowedTCPPorts = [ 25 80 143 443 993 ]; networking.firewall.allowedTCPPorts = [
# # DLNA ports: https://jellyfin.org/docs/general/networking/index.html 25 # SMTP
# networking.firewall.allowedUDPPorts = [ 1900 7359 ]; 80 # HTTP
143 # IMAP
443 # HTTPS
465 # SMTPS (maybe not required?)
587 # SMTPS/submission (maybe not required?)
993 # IMAPS
];
# DLNA ports: https://jellyfin.org/docs/general/networking/index.html
networking.firewall.allowedUDPPorts = [ 1900 7359 ];
# we need to use externally-visible nameservers in order for VPNs to be able to resolve hosts. # we need to use externally-visible nameservers in order for VPNs to be able to resolve hosts.
networking.nameservers = [ networking.nameservers = [