From d7d3ba5c20bb812fc686af6554a3c4c531f70f62 Mon Sep 17 00:00:00 2001
From: iFargle <albert@sysctl.io>
Date: Fri, 12 Jan 2024 12:09:42 +0900
Subject: [PATCH] test

---
 nixos/hosts/framework-server/firewall.nix | 37 ++++++++++++++---------
 1 file changed, 22 insertions(+), 15 deletions(-)

diff --git a/nixos/hosts/framework-server/firewall.nix b/nixos/hosts/framework-server/firewall.nix
index 4070cfa8..8a1c380d 100644
--- a/nixos/hosts/framework-server/firewall.nix
+++ b/nixos/hosts/framework-server/firewall.nix
@@ -1,17 +1,24 @@
 { config, lib, pkgs, ... }: {
-  networking.firewall.allowedUDPPorts = [
-    3478  # Headscale DERP UDP
-    10000 # Jitsi
-  ];
-  networking.firewall.allowedTCPPorts = [
-    80    # HTTP
-    443   # HTTPS
-    42420 # Vintage Story
-    25565 # Minecraft
-    1443  # Headscale DERP
-    4443  # jitsi-jvb
-    5222  # Jitsi
-    5347  # Jitsi
-    5280  # Jitsi
-  ];
+  networking = {
+    firewall = {
+      enable = true;
+      allowedTCPPorts = [
+        80    # HTTP
+        443   # HTTPS
+        42420 # Vintage Story
+        25565 # Minecraft
+        1443  # Headscale DERP (tcp)
+        25   # Mailserver
+        143  # Mailserver
+        465  # Mailserver
+        587  # Mailserver
+        993  # Mailserver
+        4190 # Mailserver
+      ];
+      allowedUDPPorts = [
+        3478  # Headscale DERP (udp)
+        10000 # Jitsi Meet (udp)
+      ];
+    };
+  };
 }