ma x: allow virtualbox firewall

author: makefu <github@syntax-fehler.de> 2017-08-16 12:14:00 +0200
committer: makefu <github@syntax-fehler.de> 2017-08-16 12:31:57 +0200
commit: 8df06de479a570f0103f1fc410f074c0fdcacd39 (patch)
tree: b30cc151c827f51bd13da57b756bd5c14b5207f3 /1systems
parent: d872fc94d40990a3b25a648be306d4d2e737b0d4 (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/1systems/x/config.nix b/1systems/x/config.nix
index 368655575..8e8c8a736 100644
--- a/1systems/x/config.nix
+++ b/1systems/x/config.nix
@@ -42,6 +42,14 @@ with import <stockholm/lib>;
       <stockholm/makefu/2configs/virtualisation/libvirt.nix>
       <stockholm/makefu/2configs/virtualisation/docker.nix>
       <stockholm/makefu/2configs/virtualisation/virtualbox.nix>
+      {
+        networking.firewall.allowedTCPPorts = [ 8080 ];
+        networking.nat = {
+          enable = true;
+          externalInterface = "wlp3s0";
+          internalInterfaces = [ "vboxnet0" ];
+        };
+      }
 
       # Services
       <stockholm/makefu/2configs/git/brain-retiolum.nix>
@@ -81,6 +89,7 @@ with import <stockholm/lib>;
   networking.firewall.enable = true;
   networking.firewall.allowedTCPPorts = [ 80 24800 26061 8000 3000 ];
   networking.firewall.allowedUDPPorts = [ 665 26061 ];
+  networking.firewall.trustedInterfaces = [ "vboxnet0" ];
 
   krebs.build.host = config.krebs.hosts.x;
author	makefu <github@syntax-fehler.de>	2017-08-16 12:14:00 +0200
committer	makefu <github@syntax-fehler.de>	2017-08-16 12:31:57 +0200
commit	8df06de479a570f0103f1fc410f074c0fdcacd39 (patch)
tree	b30cc151c827f51bd13da57b756bd5c14b5207f3 /1systems
parent	d872fc94d40990a3b25a648be306d4d2e737b0d4 (diff)