diff options
| author | Kjetil Orbekk <kj@orbekk.com> | 2022-05-13 18:41:19 -0400 |
|---|---|---|
| committer | Kjetil Orbekk <kj@orbekk.com> | 2022-05-13 18:41:19 -0400 |
| commit | 43033ffdb434d0665a4a4ca484ed12ac362b207f (patch) | |
| tree | e403a21a332f60b8b83efba86d2335da543d722c /modules | |
| parent | e7b2740692c38a95ff56bb16d8034b86b6e6f454 (diff) | |
firelink
Diffstat (limited to 'modules')
| -rw-r--r-- | modules/simple-firewall.nix | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/modules/simple-firewall.nix b/modules/simple-firewall.nix index 1590bcd..c2ed26b 100644 --- a/modules/simple-firewall.nix +++ b/modules/simple-firewall.nix @@ -32,12 +32,14 @@ in table inet filter { set allowed_tcp_ports { type inet_service + flags interval ${lib.optionalString (cfg.allowedTCPPorts != [])'' elements = {${csvPorts cfg.allowedTCPPorts}} ''} } set allowed_udp_ports { type inet_service + flags interval ${lib.optionalString (cfg.allowedUDPPorts != [])'' elements = {${csvPorts cfg.allowedUDPPorts}} ''} |