From f8209b76b848c04cc0aa3bda89ae9daf4df7a919 Mon Sep 17 00:00:00 2001 From: iFargle Date: Thu, 21 Dec 2023 15:57:47 +0900 Subject: [PATCH] Clean up fireall --- nixos/hosts/osaka-linode-01/firewall.nix | 36 ++++-------------------- 1 file changed, 6 insertions(+), 30 deletions(-) diff --git a/nixos/hosts/osaka-linode-01/firewall.nix b/nixos/hosts/osaka-linode-01/firewall.nix index 21f4dcfd..7593932d 100644 --- a/nixos/hosts/osaka-linode-01/firewall.nix +++ b/nixos/hosts/osaka-linode-01/firewall.nix @@ -32,36 +32,12 @@ internalInterfaces = [ "wireguard0" ]; externalInterface = "enp0s4"; forwardPorts = [ - { # Headscale DERP UDP - destination = "10.100.0.2:3478"; - proto = "udp"; - sourcePort = 3478; - } - { # HTTP - destination = "10.100.0.2:80"; - proto = "tcp"; - sourcePort = 80; - } - { # HTTPS - destination = "10.100.0.2:443"; - proto = "tcp"; - sourcePort = 443; - } - { # Vintage Story - destination = "10.100.0.2:42420"; - proto = "tcp"; - sourcePort = 42420; - } - { # Minecraft - destination = "10.100.0.2:25565"; - proto = "tcp"; - sourcePort = 25565; - } - { # Headscale DERP TCP - destination = "10.100.0.2:1443"; - proto = "tcp"; - sourcePort = 1443; - } + { destination = "10.100.0.2:3478"; proto = "udp"; sourcePort = 3478; } # HTTP + { destination = "10.100.0.2:80"; proto = "tcp"; sourcePort = 80; } # HTTPS + { destination = "10.100.0.2:443"; proto = "tcp"; sourcePort = 443; } # Vintage Story + { destination = "10.100.0.2:42420"; proto = "tcp"; sourcePort = 42420; } # Minecraft + { destination = "10.100.0.2:25565"; proto = "tcp"; sourcePort = 25565; } # Headscale DERP (tcp) + { destination = "10.100.0.2:1443"; proto = "tcp"; sourcePort = 1443; } # Headscale DERP (udp) ]; }; };