mirrors/mdlayher-homelab
1
0
Fork 0
mirror of https://github.com/mdlayher/homelab.git synced 2024-12-14 11:47:32 +00:00
Code Activity

nixos/routnerr-2: open consrv port, disable rtp6

Browse source
This commit is contained in:
Matt Layher 2020-07-20 12:16:46 -04:00
parent c6fc68d271
commit 966e872f8d
1 changed files with 4 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
nixos/routnerr-2/nftables.nix
View file

@ -5,6 +5,7 @@ let
# Port definitions.
ports = {
consrv = "2222";
dns = "53";
dhcp4_server = "67";
dhcp4_client = "68";
@ -259,7 +260,7 @@ in {
lib.concatMapStrings (host: "${host.ipv6.gua}, ")
vars.hosts.servers
}
} tcp dport ${ports.ssh} counter accept comment "IPv6 SSH"
} tcp dport {${ports.ssh}, ${ports.consrv}} counter accept comment "IPv6 SSH"
# Plex running on server.
ip daddr ${vars.server_ipv4} tcp dport ${ports.plex} counter accept comment "server IPv4 Plex"
@ -281,8 +282,8 @@ in {
2601:405:8500:f600::/64,
} ip6 daddr ${vars.server_ipv6} udp dport ${ports.unifi_stun} counter accept comment "server UDPv6 UniFi"
# Streaming RTP6 on desktop.
ip6 daddr ${vars.desktop_ipv6} udp dport 5000-5007 counter accept comment "desktop IPv6 RTP"
# Streaming RTP6 on desktop, only enabled when necessary.
# ip6 daddr ${vars.desktop_ipv6} udp dport 5000-5007 counter accept comment "desktop IPv6 RTP"
counter reject
}