From b6caebc4ef08c4ad609540b7d9b3b1520baf8c31 Mon Sep 17 00:00:00 2001
From: clerie <git@clerie.de>
Date: Sun, 10 Jan 2021 22:28:50 +0100
Subject: [PATCH] Open firewall for gre

---
 configuration/router/default.nix | 16 +++++++++++-----
 1 file changed, 11 insertions(+), 5 deletions(-)

diff --git a/configuration/router/default.nix b/configuration/router/default.nix
index 5ef8c8f..cf79074 100644
--- a/configuration/router/default.nix
+++ b/configuration/router/default.nix
@@ -10,11 +10,17 @@
     "net.ipv6.conf.all.forwarding" = true;
   };
 
-  # Open Firewall for BGP
-  networking.firewall.allowedTCPPorts = [ 179 ];
-  # Open Fireall for OSPF
+  networking.firewall.allowedTCPPorts = [
+    # Open Firewall for BGP
+    179
+  ];
+
   networking.firewall.extraCommands = ''
-  ip6tables -A INPUT -p ospfigp -j ACCEPT
-  iptables -A INPUT -p ospfigp -j ACCEPT
+    # Open fireall for OSPF
+    ip6tables -A INPUT -p ospfigp -j ACCEPT
+    iptables -A INPUT -p ospfigp -j ACCEPT
+    # Open firewall for GRE
+    ip6tables -A INPUT -p gre -j ACCEPT
+    iptables -A INPUT -p gre -j ACCEPT
   '';
 }