commit b6790790457c8a4fb246bcc904b68de6b62a7bb0 · pyrox.dev/nixpkgs

+16 -3
nixos/doc/manual/configuration/firewall.xml
···

       23
       23
        
       </programlisting>

     

       24
       24
        
       

     

       25
       25
        
       Note that TCP port 22 (ssh) is opened automatically if the SSH daemon

     

       26
       26
       -
       is enabled (<option>services.openssh.enable = true</option>).  UDP

     

       26
       26
       +
       is enabled (<option>services.openssh.enable = true</option>). UDP

     

       27
       27
        
       ports can be opened through

     

       28
       28
       -
       <option>networking.firewall.allowedUDPPorts</option>.  Also of

     

       29
       29
       -
       interest is

     

       28
       28
       +
       <option>networking.firewall.allowedUDPPorts</option>.</para>

     

       29
       29
       +
       

     

       30
       30
       +
       <para>To open ranges of TCP ports:

     

       31
       31
       +
       

     

       32
       32
       +
       <programlisting>

     

       33
       33
       +
       networking.firewall.allowedTCPPortRanges = [

     

       34
       34
       +
         { from = 4000; to = 4007; }

     

       35
       35
       +
         { from = 8000; to = 8010; }

     

       36
       36
       +
       ];

     

       37
       37
       +
       </programlisting>

     

       38
       38
       +
       

     

       39
       39
       +
       Similarly, UDP port ranges can be opened through

     

       40
       40
       +
       <option>networking.firewall.allowedUDPPortRanges</option>.</para>

     

       41
       41
       +
       

     

       42
       42
       +
       <para>Also of interest is

     

       30
       43
        
       

     

       31
       44
        
       <programlisting>

     

       32
       45
        
       networking.firewall.allowPing = true;