aboutsummaryrefslogtreecommitdiffstats
path: root/hosts/darkstar/services.nix
diff options
context:
space:
mode:
authorMark Nipper <nipsy@bitgnome.net>2024-06-13 01:23:27 -0700
committerMark Nipper <nipsy@bitgnome.net>2024-06-13 01:23:27 -0700
commit955088a064ae9838f37cf8a318c951849ee4d9a4 (patch)
tree4f5f19b5819811281891e4347efbe138b5f74ad7 /hosts/darkstar/services.nix
parent40fc29352e9699d66ec63cda4dd98881bc281938 (diff)
downloadnix-955088a064ae9838f37cf8a318c951849ee4d9a4.tar
nix-955088a064ae9838f37cf8a318c951849ee4d9a4.tar.gz
nix-955088a064ae9838f37cf8a318c951849ee4d9a4.tar.bz2
nix-955088a064ae9838f37cf8a318c951849ee4d9a4.tar.lz
nix-955088a064ae9838f37cf8a318c951849ee4d9a4.tar.xz
nix-955088a064ae9838f37cf8a318c951849ee4d9a4.tar.zst
nix-955088a064ae9838f37cf8a318c951849ee4d9a4.zip
Add additional service firewall rules
Diffstat (limited to '')
-rw-r--r--hosts/darkstar/services.nix9
1 files changed, 9 insertions, 0 deletions
diff --git a/hosts/darkstar/services.nix b/hosts/darkstar/services.nix
index 90face3..323080c 100644
--- a/hosts/darkstar/services.nix
+++ b/hosts/darkstar/services.nix
@@ -1,4 +1,13 @@
{
+ networking.nftables.tables.ntp = {
+ content = ''
+ define int_if = enp116s0
+ iifname $int_if udp dport ntp accept # 123
+ '';
+ enable = true;
+ family = inet;
+ };
+
services.chrony = {
enable = true;
extraConfig = ''