parameterize main nic and dmz bridge interface names

firewall some services to particular interfaces
2024-01-13 00:05:25 +01:00 · 2024-01-13 00:05:25 +01:00 · 76501362f7
commit 76501362f7
parent 6bcdd774ac
5 changed files with 44 additions and 28 deletions
--- a/nixos/modules/data-sharing.nix
+++ b/nixos/modules/data-sharing.nix
@ -50,7 +50,7 @@ in
  };

  config = lib.mkIf cfg.enable {
-    networking.firewall.allowedTCPPorts = [
+    networking.firewall.interfaces.${config.lab.networking.dmzBridgeName}.allowedTCPPorts = [
      2049 # NFS
      5432 # PostgeSQL
      111 # NFS