From 04617073fea57cae7185cf1c9d816a7b485f7e1a Mon Sep 17 00:00:00 2001
From: iFargle <albert@sysctl.io>
Date: Thu, 6 Jul 2023 19:58:22 +0900
Subject: [PATCH] test

---
 configuration.nix    | 2 +-
 services/openssh.nix | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/configuration.nix b/configuration.nix
index a269b923..25087a3d 100644
--- a/configuration.nix
+++ b/configuration.nix
@@ -55,7 +55,7 @@
       enable = true;
       allowedTCPPorts = [  ];
       allowedUDPPorts = [  ];
-      trustedInterfaces = [ "tailscale0" ];
+      networking.interfaces.tailscale0.allowedTCPPorts = [ 22 ];
     };
   };
 
diff --git a/services/openssh.nix b/services/openssh.nix
index 130441bf..6dcadb2e 100644
--- a/services/openssh.nix
+++ b/services/openssh.nix
@@ -1,6 +1,7 @@
 { config, pkgs, ... }: {
   services.openssh = {
     enable = true;
+    openFirewall = false;
     settings = {
       LogLevel = "VERBOSE"; # Used for fail2ban monitoring
       PermitRootLogin = "no";