ops/nixos: allow all traffic in on tailscale0
This commit is contained in:
parent
46896bc2ed
commit
a507a5380d
1 changed files with 5 additions and 0 deletions
|
@ -102,6 +102,11 @@ in
|
||||||
programs.mtr.enable = true;
|
programs.mtr.enable = true;
|
||||||
services.openssh.enable = true;
|
services.openssh.enable = true;
|
||||||
services.tailscale.enable = true;
|
services.tailscale.enable = true;
|
||||||
|
networking.firewall.interfaces.tailscale0 = {
|
||||||
|
# Just allow anything in on tailscale0.
|
||||||
|
allowedTCPPortRanges = [{ from = 0; to = 65535; }];
|
||||||
|
allowedUDPPortRanges = [{ from = 0; to = 65535; }];
|
||||||
|
};
|
||||||
|
|
||||||
boot = {
|
boot = {
|
||||||
kernelModules = [ "tcp_bbr" ];
|
kernelModules = [ "tcp_bbr" ];
|
||||||
|
|
Loading…
Reference in a new issue