aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorAlex Auvolat <alex@adnab.me>2021-12-08 17:57:54 +0100
committerAlex Auvolat <alex@adnab.me>2021-12-08 17:57:54 +0100
commitad72e17f93c1623c9709d22ba99be6b51abf392b (patch)
treef223a8d6921a9181836922cc36862685c8d8a4a2
parent2150e0956bbffb995e15e29dc7f5415eb9a2e1dd (diff)
downloadnixcfg-ad72e17f93c1623c9709d22ba99be6b51abf392b.tar.gz
nixcfg-ad72e17f93c1623c9709d22ba99be6b51abf392b.zip
Firewall ports
-rw-r--r--node/carcajou.nix3
-rw-r--r--site/neptune.nix2
2 files changed, 5 insertions, 0 deletions
diff --git a/node/carcajou.nix b/node/carcajou.nix
index bc90d76..74109bd 100644
--- a/node/carcajou.nix
+++ b/node/carcajou.nix
@@ -29,4 +29,7 @@
# Activate as Nomad and Consul server node
services.nomad.settings.server.enabled = true;
services.consul.extraConfig.server = true;
+
+ # Use this node as entrypoint to cluster (Diplonat not working for now)
+ networking.firewall.allowedTCPPorts = [ 80 443 ];
}
diff --git a/site/neptune.nix b/site/neptune.nix
index a42e2a7..27e2588 100644
--- a/site/neptune.nix
+++ b/site/neptune.nix
@@ -8,6 +8,8 @@
services.nomad.settings.datacenter = "neptune";
+ networking.firewall.allowedTCPPorts = [ 80 443 ];
+
# ----
nix = {