voronind/nix
0
0
Fork 0
Code Issues 38 Pull requests Packages Projects Releases Wiki Activity

Home: Allow LAN access at any address.

Browse source
This commit is contained in:
Dmitry Voronin 2025-01-01 20:04:41 +03:00
parent 9015f893e0
commit 4d84d2bc4c
Signed by: voronind
SSH key fingerprint: SHA256:3kBb4iV2ahufEBNq+vFbUe4QYfHt98DHQjN7QaptY9k
1 changed files with 3 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
host/x86_64-linux/home/Network.nix
View file

@ -166,15 +166,15 @@ in
iptables -t nat -A POSTROUTING -s 10.0.0.0/24 -d 0/0 -o ${wan} -j MASQUERADE iptables -t nat -A POSTROUTING -s 10.0.0.0/24 -d 0/0 -o ${wan} -j MASQUERADE
# Full access from Lan. # Full access from Lan.
iptables -I INPUT -j ACCEPT -i ${lan} -d ${internal} iptables -I INPUT -j ACCEPT -i ${lan}
ip6tables -I INPUT -j ACCEPT -i ${lan} -d ${internal6} ip6tables -I INPUT -j ACCEPT -i ${lan}
# Public email server. # Public email server.
ip46tables -I INPUT -j ACCEPT -i ${wan} -p tcp --dport 25 ip46tables -I INPUT -j ACCEPT -i ${wan} -p tcp --dport 25
# Public VPN service. # Public VPN service.
ip46tables -I INPUT -j ACCEPT -i ${wan} -p udp --dport 22145 ip46tables -I INPUT -j ACCEPT -i ${wan} -p udp --dport 22145
iptables -I INPUT -j ACCEPT -s 10.0.1.0/24 -d ${internal} iptables -I INPUT -j ACCEPT -s 10.0.1.0/24
# Public Nginx. # Public Nginx.
ip46tables -I INPUT -j ACCEPT -i ${wan} -p tcp --dport 443 ip46tables -I INPUT -j ACCEPT -i ${wan} -p tcp --dport 443