~magic_rb/dotfiles

b87986d6d7a49111aebb143d3eb261224d5c2f24 — magic_rb 2 months ago 311afc3
Accept blowhole minecraft port

Signed-off-by: magic_rb <magic_rb@redalder.org>
1 files changed, 4 insertions(+), 0 deletions(-)

M nixos/systems/blowhole/firewall.nix
M nixos/systems/blowhole/firewall.nix => nixos/systems/blowhole/firewall.nix +4 -0
@@ 148,6 148,10 @@ in
            # Accept WireGuard
            iifname "${wan}" udp dport 6666 accept;


            # Accept minecraft
            iifname "${wan}" tcp dport 25560 accept;

            iifname { "nomad", "ve-monitor", "ve-klipper" } oifname { "nomad", "ve-monitor", "ve-klipper" } accept comment "Allow Nomad to do whatever it wants in its interface"
            iifname { "${wlan}", "${lan}", "lo" } accept comment "Allow local network to access the router"
            iifname { "${wan}", "${doVPN}", "nomad", "docker0", "ve-monitor", "ve-klipper", "mvm0" } jump input_out