diff options
author | lassulus <lass@aidsballs.de> | 2016-04-19 13:22:43 +0200 |
---|---|---|
committer | lassulus <lass@aidsballs.de> | 2016-04-19 13:22:43 +0200 |
commit | e1140ef7ea4c644707b24911f779c276a14a268e (patch) | |
tree | 3aa6e4c4caeacdad2c10335cdbc0dc75492c1344 /lass/1systems | |
parent | 3d7b41fb0bfa8e428bebc58eb42b978d784eed15 (diff) |
l 1 dishfire: open http[s] ports
Diffstat (limited to 'lass/1systems')
-rw-r--r-- | lass/1systems/dishfire.nix | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/lass/1systems/dishfire.nix b/lass/1systems/dishfire.nix index dd1d1e541..b5e551952 100644 --- a/lass/1systems/dishfire.nix +++ b/lass/1systems/dishfire.nix @@ -7,7 +7,6 @@ ../2configs/default.nix ../2configs/exim-retiolum.nix ../2configs/git.nix - ../2configs/websites/fritz.nix { boot.loader.grub = { device = "/dev/vda"; @@ -55,6 +54,15 @@ mk_sql_pair ]; } + { + imports = [ + ../2configs/websites/fritz.nix + ]; + krebs.iptables.tables.filter.INPUT.rules = [ + { predicate = "-p tcp --dport http"; target = "ACCEPT"; } + { predicate = "-p tcp --dport https"; target = "ACCEPT"; } + ]; + } ]; krebs.build.host = config.krebs.hosts.dishfire; |