tv sshd: accept connections via wiregrill

2023-05-28 12:51:19 +02:00 · 2023-05-28 12:51:19 +02:00 · 1a678e3093
parent 24b9fc11d6
commit 1a678e3093
1 changed files with 2 additions and 0 deletions
--- a/tv/2configs/sshd.nix
+++ b/tv/2configs/sshd.nix
@ -11,9 +11,11 @@ in {
  ];
  tv.iptables.extra4.nat.PREROUTING = [
    "-d ${cfg.host.nets.retiolum.ip4.addr} -p tcp --dport 22 -j ACCEPT"
    "-d ${cfg.host.nets.wiregrill.ip4.addr} -p tcp --dport 22 -j ACCEPT"
  ];
  tv.iptables.extra6.nat.PREROUTING = [
    "-d ${cfg.host.nets.retiolum.ip6.addr} -p tcp --dport 22 -j ACCEPT"
    "-d ${cfg.host.nets.wiregrill.ip6.addr} -p tcp --dport 22 -j ACCEPT"
  ];
  tv.iptables.extra.nat.PREROUTING = [
    "-p tcp --dport 22 -j REDIRECT --to-ports 0"