ops/nixos: allow all traffic in on tailscale0

This commit is contained in:
Luke Granger-Brown 2020-11-04 21:53:02 +00:00
parent 46896bc2ed
commit a507a5380d

View file

@ -102,6 +102,11 @@ in
programs.mtr.enable = true; programs.mtr.enable = true;
services.openssh.enable = true; services.openssh.enable = true;
services.tailscale.enable = true; services.tailscale.enable = true;
networking.firewall.interfaces.tailscale0 = {
# Just allow anything in on tailscale0.
allowedTCPPortRanges = [{ from = 0; to = 65535; }];
allowedUDPPortRanges = [{ from = 0; to = 65535; }];
};
boot = { boot = {
kernelModules = [ "tcp_bbr" ]; kernelModules = [ "tcp_bbr" ];