Lots of changes

2025-05-28 16:44:19 +02:00 · 2025-05-28 16:44:19 +02:00 · 31f154497d
commit 31f154497d
parent 83389842f6
4 changed files with 47 additions and 73 deletions
--- a/maskiner/macmini/configuration.nix
+++ b/maskiner/macmini/configuration.nix
@ -7,42 +7,55 @@
  pkgs,
  myhostname,
  ...
-}: {
+}:
+{
  # You can import other NixOS modules here
  imports = [
    ./hardware-configuration.nix
-	../../config/users.nix
+    ../../config/users.nix
  ];

-	environment.systemPackages = with pkgs; [
-		unstable.lego
-	];
-networking.firewall = {
-  enable = true;
-  allowedTCPPorts = [ 80 443 3000 8384 22000];
-  allowedUDPPortRanges = [
-    { from = 4000; to = 4007; }
-    { from = 8000; to = 8010; }
+  environment.systemPackages = with pkgs; [
+    unstable.lego
  ];
-};
+  networking.firewall = {
+    enable = true;
+    allowedTCPPorts = [
+      80
+      443
+      3000
+      8384
+      8008
+      8009
+      22000
+    ];
+    allowedUDPPortRanges = [
+      {
+        from = 1;
+        to = 65535;
+      }
+    ];
+  };

-   networking.firewall.allowedUDPPorts = [ 22000 21027 ];
-
-	services = {
-		openssh = {
-			enable = true;
-			ports = [22];
-			settings = {
-				PermitRootLogin = "no";
-				PasswordAuthentication = false;
-				X11Forwarding = true;
-			};
-			extraConfig = ''
-			  AllowUsers fw
-			'';
-		};
-	  };
+  networking.firewall.allowedUDPPorts = [
+    22000
+    21027
+  ];

+  services = {
+    openssh = {
+      enable = true;
+      ports = [ 22 ];
+      settings = {
+        PermitRootLogin = "no";
+        PasswordAuthentication = false;
+        X11Forwarding = true;
+      };
+      extraConfig = ''
+        			  AllowUsers fw
+        			'';
+    };
+  };

  security.rtkit.enable = true;
  networking.hostName = myhostname;