cy/nixos-config
cy/nixos-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

dont trust docker interface

Browse source
This commit is contained in:
cy 2024-12-17 13:37:42 -05:00
parent f3f980c3e1
commit b9be11cbb2
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
hosts/chunk/default.nix
View file

@ -93,7 +93,7 @@
enable = true; enable = true;
allowedTCPPorts = [22 80 443 53 853]; allowedTCPPorts = [22 80 443 53 853];
allowedUDPPorts = [443 51820 53 853]; # 51820 is wireguard allowedUDPPorts = [443 51820 53 853]; # 51820 is wireguard
trustedInterfaces = ["wg0" "br-2a019a56bbcc"]; # the second one is docker, idk if this changes trustedInterfaces = ["wg0"];
}; };
networking.interfaces.ens18 = { networking.interfaces.ens18 = {
ipv6.addresses = [ ipv6.addresses = [