diff options
author | tv <tv@krebsco.de> | 2023-05-28 12:51:19 +0200 |
---|---|---|
committer | tv <tv@krebsco.de> | 2023-05-28 12:51:19 +0200 |
commit | 1a678e3093148d9f376d32723430444305ffb055 (patch) | |
tree | f948520b936b3619f592eea94ea5f3047a10b27b /tv/2configs/sshd.nix | |
parent | 24b9fc11d6c9345d39a0ec0f97d58cdbdbde7f0c (diff) |
tv sshd: accept connections via wiregrill
Diffstat (limited to 'tv/2configs/sshd.nix')
-rw-r--r-- | tv/2configs/sshd.nix | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/tv/2configs/sshd.nix b/tv/2configs/sshd.nix index 4da8c8216..33856ac12 100644 --- a/tv/2configs/sshd.nix +++ b/tv/2configs/sshd.nix @@ -11,9 +11,11 @@ in { ]; tv.iptables.extra4.nat.PREROUTING = [ "-d ${cfg.host.nets.retiolum.ip4.addr} -p tcp --dport 22 -j ACCEPT" + "-d ${cfg.host.nets.wiregrill.ip4.addr} -p tcp --dport 22 -j ACCEPT" ]; tv.iptables.extra6.nat.PREROUTING = [ "-d ${cfg.host.nets.retiolum.ip6.addr} -p tcp --dport 22 -j ACCEPT" + "-d ${cfg.host.nets.wiregrill.ip6.addr} -p tcp --dport 22 -j ACCEPT" ]; tv.iptables.extra.nat.PREROUTING = [ "-p tcp --dport 22 -j REDIRECT --to-ports 0" |