fix: centralise the ports

This commit is contained in:
silver 2023-04-21 00:53:25 +01:00
parent f63aa7f245
commit fe93f796a6
4 changed files with 8 additions and 12 deletions

View file

@ -67,6 +67,11 @@ in {
group = "named"; group = "named";
}; };
networking.firewall = {
allowedTCPPorts = [53];
allowedUDPPorts = [53];
};
services.bind = { services.bind = {
enable = true; enable = true;

View file

@ -26,6 +26,9 @@
networking = { networking = {
# every sever needs to be accessable over ssh for admin use at least
firewall.allowedTCPPorts = [22];
# explisitly stating this is good # explisitly stating this is good
defaultGateway = "193.1.99.65"; defaultGateway = "193.1.99.65";

View file

@ -50,11 +50,6 @@ in {
]; ];
}; };
}; };
firewall = {
allowedTCPPorts = [22 53];
allowedUDPPorts = [53];
};
}; };
# open the firewall for this # open the firewall for this

View file

@ -34,13 +34,6 @@ in {
tags = [ "active" "dns" ]; tags = [ "active" "dns" ];
}; };
networking = {
firewall = {
allowedTCPPorts = [22 53];
allowedUDPPorts = [53];
};
};
# open the firewall for this # open the firewall for this
skynet_firewall.forward = [ skynet_firewall.forward = [
"ip daddr ${ip_pub} tcp dport 53 counter packets 0 bytes 0 accept" "ip daddr ${ip_pub} tcp dport 53 counter packets 0 bytes 0 accept"