summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorlassulus <lass@xerxes.r>2019-10-14 15:15:58 +0200
committerlassulus <lass@xerxes.r>2019-10-14 15:15:58 +0200
commit9d148800eb4c5eb94c776818426abb36a02fcb7d (patch)
tree9b84289009f7d928715ea47be68b8ca2204f8f15
parentf7500d37a0141a3b7c76f1c17a4508aeaa328f6b (diff)
l: accept port 22 from wiregrill
-rw-r--r--lass/2configs/default.nix4
1 files changed, 3 insertions, 1 deletions
diff --git a/lass/2configs/default.nix b/lass/2configs/default.nix
index 469c81f16..5775c1687 100644
--- a/lass/2configs/default.nix
+++ b/lass/2configs/default.nix
@@ -186,7 +186,9 @@ with import <stockholm/lib>;
enable = true;
tables = {
nat.PREROUTING.rules = [
- { predicate = "! -i retiolum -p tcp -m tcp --dport 22"; target = "REDIRECT --to-ports 0"; precedence = 100; }
+ { predicate = "-i retiolum -p tcp -m tcp --dport 22"; target = "ACCEPT"; precedence = 101; }
+ { predicate = "-i wiregrill -p tcp -m tcp --dport 22"; target = "ACCEPT"; precedence = 101; }
+ { predicate = "-p tcp -m tcp --dport 22"; target = "REDIRECT --to-ports 0"; precedence = 100; }
{ predicate = "-p tcp -m tcp --dport 45621"; target = "REDIRECT --to-ports 22"; precedence = 99; }
];
nat.OUTPUT.rules = [