0xa/nix-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

add port forward for music

Browse source
This commit is contained in:
Grigory Shipunov 2023-01-30 23:30:48 +01:00
parent 85b7b3f370
commit b1823c1d2c
Signed by: 0xa
GPG key ID: 91FA5E5BF9AA901C
1 changed files with 21 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

22
hosts/cirrus/wireguard-server.nix
View file

@ -1,7 +1,27 @@
{ config, ... }:
{
networking.firewall.allowedUDPPorts = [ 51820 51821 ];
networking.firewall = {
allowedUDPPorts = [
# wireguards
51820
51821
];
allowedTCPPorts = [
# port forward ssh to music
2020
];
# port-forward ssh to the music machine
extraCommands = ''
iptables -t nat -I PREROUTING -p tcp --dport 2020 -j DNAT --to-destination 10.34.45.101:22
'';
extraStopCommands = ''
iptables -t nat -D PREROUTING -p tcp --dport 2020 -j DNAT --to-destination 10.34.45.101:22 || true
'';
};
networking.wireguard.enable = true;
systemd.network = {
# oxalab
netdevs."oxalab" = {