diff options
author | lassulus <lassulus@lassul.us> | 2022-12-30 21:52:45 +0100 |
---|---|---|
committer | lassulus <lassulus@lassul.us> | 2022-12-30 21:52:45 +0100 |
commit | 96f27d2db0caf10fb1257f16f58e67484c8ca354 (patch) | |
tree | 961f24ea689a45061087ab27d26f79d487d23111 /krebs | |
parent | 59a0ed177a437d4cce269183865b0dedd783ad0a (diff) | |
parent | 2ebbec1f2d9c16fe084abba87718d0f60e61bf88 (diff) |
Merge remote-tracking branch 'ni/master'
Diffstat (limited to 'krebs')
-rw-r--r-- | krebs/3modules/iptables.nix | 8 |
1 files changed, 1 insertions, 7 deletions
diff --git a/krebs/3modules/iptables.nix b/krebs/3modules/iptables.nix index 7007090c0..052dad9c6 100644 --- a/krebs/3modules/iptables.nix +++ b/krebs/3modules/iptables.nix @@ -43,10 +43,6 @@ let target = mkOption { type = str; }; - precedence = mkOption { - type = int; - default = 0; - }; v4 = mkOption { type = bool; default = true; @@ -145,13 +141,11 @@ let buildChain = tn: cn: let filteredRules = filter (r: r."${v}") ts."${tn}"."${cn}".rules; - sortedRules = sort (a: b: a.precedence > b.precedence) filteredRules; - in #TODO: double check should be unneccessary, refactor! if ts.${tn}.${cn}.rules or null != null then concatMapStringsSep "\n" (rule: "\n-A ${cn} ${rule}") ([] - ++ map (buildRule tn cn) sortedRules + ++ map (buildRule tn cn) filteredRules ) else "" |