SK-Development-Studios/Nixos-Configuration
2
1
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

firewall improved to use module tables feature

Browse source
This commit is contained in:
Jermeiah S 2025-07-01 17:32:55 -04:00
parent 69e69c2b7f
commit 9fc3927c86
No known key found for this signature in database
1 changed files with 26 additions and 22 deletions
Download patch file Download diff file Expand all files Collapse all files

16
modules/nixos/common/firewall.nix
View file

@ -1,14 +1,17 @@
{ {
lib, # lib,
pkgs, # pkgs,
config, # config,
... ...
}: }:
{ {
networking.nftables = { networking.nftables = {
enable = true; enable = true;
ruleset = '' tables = {
table inet filter { yggSsh = {
name = "yggSsh";
family = "inet";
content = ''
chain input { chain input {
type filter hook input priority filter; policy accept; type filter hook input priority filter; policy accept;
ct state related,established accept ct state related,established accept
@ -27,7 +30,8 @@
chain output { chain output {
type filter hook output priority filter; policy accept; type filter hook output priority filter; policy accept;
} }
}
''; '';
}; };
};
};
} }