summaryrefslogtreecommitdiffstats
path: root/tv/1systems
diff options
context:
space:
mode:
authortv <tv@krebsco.de>2016-06-30 00:52:35 +0200
committertv <tv@krebsco.de>2016-06-30 01:08:01 +0200
commit716a2fc6e842ff051df6de1999b5b97780f2d2cd (patch)
treeb2dd51a390b42f715e66dd806a4ebda41096aeee /tv/1systems
parent20a9f5906144d8083300691ea588a9d2ef1a4f60 (diff)
tv iptables: add input-*-accept-udp
Diffstat (limited to 'tv/1systems')
-rw-r--r--tv/1systems/cd.nix8
-rw-r--r--tv/1systems/mkdir.nix4
-rw-r--r--tv/1systems/rmdir.nix4
3 files changed, 8 insertions, 8 deletions
diff --git a/tv/1systems/cd.nix b/tv/1systems/cd.nix
index 32d956b8a..a46edb4d9 100644
--- a/tv/1systems/cd.nix
+++ b/tv/1systems/cd.nix
@@ -18,7 +18,7 @@ with config.krebs.lib;
enable = true;
ssl_cert = ../Zcerts/charybdis_cd.crt.pem;
};
- tv.iptables.input-retiolum-accept-new-tcp = [
+ tv.iptables.input-retiolum-accept-tcp = [
config.tv.charybdis.port
config.tv.charybdis.sslport
];
@@ -28,14 +28,14 @@ with config.krebs.lib;
enable = true;
hosts = [ "jabber.viljetic.de" ];
};
- tv.iptables.input-internet-accept-new-tcp = [
+ tv.iptables.input-internet-accept-tcp = [
"xmpp-client"
"xmpp-server"
];
}
{
krebs.github-hosts-sync.enable = true;
- tv.iptables.input-internet-accept-new-tcp =
+ tv.iptables.input-internet-accept-tcp =
singleton config.krebs.github-hosts-sync.port;
}
{
@@ -57,7 +57,7 @@ with config.krebs.lib;
root ${pkgs.viljetic-pages};
'');
};
- tv.iptables.input-internet-accept-new-tcp = singleton "http";
+ tv.iptables.input-internet-accept-tcp = singleton "http";
}
];
diff --git a/tv/1systems/mkdir.nix b/tv/1systems/mkdir.nix
index f46ed9547..dcec1e200 100644
--- a/tv/1systems/mkdir.nix
+++ b/tv/1systems/mkdir.nix
@@ -22,12 +22,12 @@ in
{
tv.iptables = {
enable = true;
- input-internet-accept-new-tcp = [
+ input-internet-accept-tcp = [
"ssh"
"tinc"
"smtp"
];
- input-retiolum-accept-new-tcp = [
+ input-retiolum-accept-tcp = [
"http"
];
};
diff --git a/tv/1systems/rmdir.nix b/tv/1systems/rmdir.nix
index 25fae2c36..34f926020 100644
--- a/tv/1systems/rmdir.nix
+++ b/tv/1systems/rmdir.nix
@@ -22,12 +22,12 @@ in
{
tv.iptables = {
enable = true;
- input-internet-accept-new-tcp = [
+ input-internet-accept-tcp = [
"ssh"
"tinc"
"smtp"
];
- input-retiolum-accept-new-tcp = [
+ input-retiolum-accept-tcp = [
"http"
];
};