From b9be11cbb2236ac106241d0104f2b26a0e502779 Mon Sep 17 00:00:00 2001
From: cy <hi@cything.io>
Date: Tue, 17 Dec 2024 13:37:42 -0500
Subject: [PATCH] dont trust docker interface

---
 hosts/chunk/default.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/hosts/chunk/default.nix b/hosts/chunk/default.nix
index 83b173d..f7d7482 100644
--- a/hosts/chunk/default.nix
+++ b/hosts/chunk/default.nix
@@ -93,7 +93,7 @@
     enable = true;
     allowedTCPPorts = [22 80 443 53 853];
     allowedUDPPorts = [443 51820 53 853]; # 51820 is wireguard
-    trustedInterfaces = ["wg0" "br-2a019a56bbcc"]; # the second one is docker, idk if this changes
+    trustedInterfaces = ["wg0"];
   };
   networking.interfaces.ens18 = {
     ipv6.addresses = [