Rabjerg/nixos-configuration
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

stuff

Browse Source
This commit is contained in:
Adam Rabjerg
2022-11-07 08:14:35 +01:00
parent e5cec47a00
commit b9c0f5f3bc
3 changed files with 22 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
configuration.nix
View File

@@ -122,6 +122,10 @@
# Media # Media
vlc vlc
# Network
wireguard-tools
]; ];
# Some programs need SUID wrappers, can be configured further or are # Some programs need SUID wrappers, can be configured further or are

18
extra-services.nix
View File

@@ -30,4 +30,20 @@ services.pcscd.enable = true;
###### NTFS (3G) support ###### ###### NTFS (3G) support ######
boot.supportedFilesystems = [ "ntfs" ]; boot.supportedFilesystems = [ "ntfs" ];
}
##### Let wiregurad thru firewall ##########
networking.firewall = {
# if packets are still dropped, they will show up in dmesg
logReversePathDrops = true;
# wireguard trips rpfilter up
extraCommands = ''
ip46tables -t mangle -I nixos-fw-rpfilter -p udp -m udp --sport 1637 -j RETURN
ip46tables -t mangle -I nixos-fw-rpfilter -p udp -m udp --dport 1637 -j RETURN
'';
extraStopCommands = ''
ip46tables -t mangle -D nixos-fw-rpfilter -p udp -m udp --sport 1637 -j RETURN || true
ip46tables -t mangle -D nixos-fw-rpfilter -p udp -m udp --dport 1637 -j RETURN || true
'';
};
}

1
user-adam.nix
View File

@@ -37,6 +37,7 @@
vscodium vscodium
kicad kicad
ansible ansible
go
virtualenv virtualenv
# security # security