diff --git a/ops/nixos/lib/common.nix b/ops/nixos/lib/common.nix index 0be262b0cb..3c3f6c9c3f 100644 --- a/ops/nixos/lib/common.nix +++ b/ops/nixos/lib/common.nix @@ -228,6 +228,7 @@ in }; }; services.tailscale.enable = true; + systemd.network.config.networkConfig.ManageForeignRoutingPolicyRules = false; networking.firewall.interfaces.tailscale0 = { # Just allow anything in on tailscale0. allowedTCPPortRanges = [{ from = 0; to = 65535; }];