Restrict guest network

2021-08-19 19:03:34 +02:00 · 2021-08-19 19:03:34 +02:00 · c55c0d7367
commit c55c0d7367
parent 222d538de6
1 changed files with 6 additions and 6 deletions
--- a/hosts/carbon/configuration.nix
+++ b/hosts/carbon/configuration.nix
@ -115,12 +115,12 @@

  networking.firewall.allowedUDPPorts = [ 60001 ];

-  networking.firewwall.extraCommands = [
-    "iptables -A FORWARD -i enp1s0.202 -o enp1s0.102 -j ACCEPT"
-    "iptables -A FORWARD -i enp1s0.202 -j DROP"
-    "iptables -A FORWARD -i enp1s0.102 -o enp1s0.202 -j ACCEPT"
-    "iptables -A FORWARD -o enp1s0.202 -j DROP"
-  ];
+  networking.firewall.extraCommands = ''
+    iptables -A FORWARD -i enp1s0.202 -o enp1s0.102 -j ACCEPT
+    iptables -A FORWARD -i enp1s0.202 -j DROP
+    iptables -A FORWARD -i enp1s0.102 -o enp1s0.202 -j ACCEPT
+    iptables -A FORWARD -o enp1s0.202 -j DROP
+  '';

  # Routing tables
  # Table: 10000