From fe6791d42445b4c6ede7773908ee1fdabb75f9fa Mon Sep 17 00:00:00 2001 From: clerie Date: Tue, 8 Dec 2020 13:37:00 +0100 Subject: [PATCH] Open Firewall for bgp and ospf --- hosts/dn42-il-gw5/configuration.nix | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/hosts/dn42-il-gw5/configuration.nix b/hosts/dn42-il-gw5/configuration.nix index 69566ab..91a91de 100644 --- a/hosts/dn42-il-gw5/configuration.nix +++ b/hosts/dn42-il-gw5/configuration.nix @@ -45,6 +45,12 @@ #ip -6 rule add from fd56:4902:eca0::/48 to all unreachable prio 20000 #''; + networking.firewall.allowedTCPPorts = [ + 179 + ]; + networking.firewall.extraCommands = "ip6tables -A INPUT -p ospfigp -j ACCEPT"; + networking.firewall.extraCommands = "iptables -A INPUT -p ospfigp -j ACCEPT"; + services.bird2.enable = true; services.bird2.config = '' router id ${ (lib.head config.networking.interfaces.ens18.ipv4.addresses).address };