palo/nixos-config
palo/nixos-config
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

🔧 enable mosh ports by default

Browse source
This commit is contained in:
Ingolf Wagner 2025-02-25 02:16:44 +07:00
parent 653c14ee0e
commit 42cdc5b508
No known key found for this signature in database
GPG key ID: 76BF5F1928B9618B
1 changed files with 17 additions and 0 deletions

17
components/network/sshd/default.nix
View file

@ -36,6 +36,13 @@ in
make sure ssh is only available trough the tinc make sure ssh is only available trough the tinc
''; '';
}; };
allowMosh = mkOption {
type = bool;
default = true;
description = ''
make mosh port available
'';
};
}; };
config = mkMerge [ config = mkMerge [
@ -69,6 +76,16 @@ in
iptables --table nat --append PREROUTING ! --in-interface tinc.+ --protocol tcp --match tcp --dport 22 --jump REDIRECT --to-ports 0 iptables --table nat --append PREROUTING ! --in-interface tinc.+ --protocol tcp --match tcp --dport 22 --jump REDIRECT --to-ports 0
''; '';
}) })
(mkIf (cfg.allowMosh && cfg.enable) {
networking.firewall.allowedUDPPortRanges = [
{
from = 60000;
to = 61000;
}
];
})
]; ];
} }