home/nixos-servers
home/nixos-servers
2
0
Fork 0
Code Issues 8 Pull requests Projects Releases Packages Wiki Activity Actions

allow postgresql traffic in nftables

Browse source
This commit is contained in:
Pim Kunis 2023-11-24 10:53:18 +01:00
parent baa18a1929
commit c01d15a3e7
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
nftables.conf
View file

@ -14,6 +14,7 @@ table inet nixos-fw {
chain input-allow { chain input-allow {
tcp dport 22 accept tcp dport 22 accept
tcp dport 5432 accept comment "PostgreSQL server"
icmp type echo-request accept comment "allow ping" icmp type echo-request accept comment "allow ping"
icmpv6 type != { nd-redirect, 139 } accept comment "Accept all ICMPv6 messages except redirects and node information queries (type 139). See RFC 4890, section 4.4." icmpv6 type != { nd-redirect, 139 } accept comment "Accept all ICMPv6 messages except redirects and node information queries (type 139). See RFC 4890, section 4.4."
ip6 daddr fe80::/64 udp dport 546 accept comment "DHCPv6 client" ip6 daddr fe80::/64 udp dport 546 accept comment "DHCPv6 client"