commit fde701d93802392e08ad9d2b1ff32cb0015b774b · ptr.pet/nixos-cloud-resources

+1 -1

firewall/provider/hetzner/app.nu

···

       28
        
       # apply rules

     

       29
        
       let resp = open $rulesFile | post $"/firewalls/($firewallId)/actions/set_rules"

     

       30
        
       if $resp.status != 201 {

     

       31
       -
         log error $"could not apply firewall \(id ($firewallId)\): \(($resp | to text)\)"

     

       32
        
         exit 2

     

       33
        
       }

     

       34
        
       log info $"applied firewall ($firewallId)"

···

       28
        
       # apply rules

     

       29
        
       let resp = open $rulesFile | post $"/firewalls/($firewallId)/actions/set_rules"

     

       30
        
       if $resp.status != 201 {

     

       31
       +
         log error $"could not apply firewall \(id ($firewallId)\):\n($resp.body | to text)"

     

       32
        
         exit 2

     

       33
        
       }

     

       34
        
       log info $"applied firewall ($firewallId)"

firewall/provider/hetzner/default.nix

···

       31
        
               if l.isAttrs port

     

       32
        
               then l.concatMapStringsSep "-" toString [port.from port.to]

     

       33
        
               else toString port;

     

       0
        
       
     

       34
        
           };

     

       35
        
           mkTcpRule = mkRule "tcp";

     

       36
        
           mkUdpRule = mkRule "udp";

···

       31
        
               if l.isAttrs port

     

       32
        
               then l.concatMapStringsSep "-" toString [port.from port.to]

     

       33
        
               else toString port;

     

       34
       +
             source_ips = ["0.0.0.0/0" "::/0"];

     

       35
        
           };

     

       36
        
           mkTcpRule = mkRule "tcp";

     

       37
        
           mkUdpRule = mkRule "udp";