diff --git a/configuration/router/default.nix b/configuration/router/default.nix index 5ef8c8f..cf79074 100644 --- a/configuration/router/default.nix +++ b/configuration/router/default.nix @@ -10,11 +10,17 @@ "net.ipv6.conf.all.forwarding" = true; }; - # Open Firewall for BGP - networking.firewall.allowedTCPPorts = [ 179 ]; - # Open Fireall for OSPF + networking.firewall.allowedTCPPorts = [ + # Open Firewall for BGP + 179 + ]; + networking.firewall.extraCommands = '' - ip6tables -A INPUT -p ospfigp -j ACCEPT - iptables -A INPUT -p ospfigp -j ACCEPT + # Open fireall for OSPF + ip6tables -A INPUT -p ospfigp -j ACCEPT + iptables -A INPUT -p ospfigp -j ACCEPT + # Open firewall for GRE + ip6tables -A INPUT -p gre -j ACCEPT + iptables -A INPUT -p gre -j ACCEPT ''; }