pyrox.dev / nixpkgs
lol
fork atom

Merge pull request #113714 from ilian/steam-firewall

nixos/steam: Add port forwarding options

Lassulus f38b9b25 aed658c6

options
unified split
Changed files
+31 -1
nixos
modules
programs
steam.nix
+31 -1
nixos/modules/programs/steam.nix 
···

       
12

       
 

       
      else [ package32 ] ++ extraPackages32;


     

       
13

       
 

       
  };


     

       
14

       
 

       
in {


     

       
15

       
-

       
  options.programs.steam.enable = mkEnableOption "steam";


     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       
16

       
 

       



     

       
17

       
 

       
  config = mkIf cfg.enable {


     

       
18

       
 

       
    hardware.opengl = { # this fixes the "glXChooseVisual failed" bug, context: https://github.com/NixOS/nixpkgs/issues/47932


     
···

       
27

       
 

       
    hardware.steam-hardware.enable = true;


     

       
28

       
 

       



     

       
29

       
 

       
    environment.systemPackages = [ steam steam.run ];


     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       

       

       
     

       
30

       
 

       
  };


     

       
31

       
 

       



     

       
32

       
 

       
  meta.maintainers = with maintainers; [ mkg20001 ];


     
···

       
12

       
 

       
      else [ package32 ] ++ extraPackages32;


     

       
13

       
 

       
  };


     

       
14

       
 

       
in {


     

       
15

       
+

       
  options.programs.steam = {


     

       
16

       
+

       
    enable = mkEnableOption "steam";


     

       
17

       
+

       



     

       
18

       
+

       
    remotePlay.openFirewall = mkOption {


     

       
19

       
+

       
      type = types.bool;


     

       
20

       
+

       
      default = false;


     

       
21

       
+

       
      description = ''


     

       
22

       
+

       
        Open ports in the firewall for Steam Remote Play.


     

       
23

       
+

       
      '';


     

       
24

       
+

       
    };


     

       
25

       
+

       



     

       
26

       
+

       
    dedicatedServer.openFirewall = mkOption {


     

       
27

       
+

       
      type = types.bool;


     

       
28

       
+

       
      default = false;


     

       
29

       
+

       
      description = ''


     

       
30

       
+

       
        Open ports in the firewall for Source Dedicated Server.


     

       
31

       
+

       
      '';


     

       
32

       
+

       
    };


     

       
33

       
+

       
  };


     

       
34

       
 

       



     

       
35

       
 

       
  config = mkIf cfg.enable {


     

       
36

       
 

       
    hardware.opengl = { # this fixes the "glXChooseVisual failed" bug, context: https://github.com/NixOS/nixpkgs/issues/47932


     
···

       
45

       
 

       
    hardware.steam-hardware.enable = true;


     

       
46

       
 

       



     

       
47

       
 

       
    environment.systemPackages = [ steam steam.run ];


     

       
48

       
+

       



     

       
49

       
+

       
    networking.firewall = lib.mkMerge [


     

       
50

       
+

       
      (mkIf cfg.remotePlay.openFirewall {


     

       
51

       
+

       
        allowedTCPPorts = [ 27036 ];


     

       
52

       
+

       
        allowedUDPPortRanges = [ { from = 27031; to = 27036; } ];


     

       
53

       
+

       
      })


     

       
54

       
+

       



     

       
55

       
+

       
      (mkIf cfg.dedicatedServer.openFirewall {


     

       
56

       
+

       
        allowedTCPPorts = [ 27015 ]; # SRCDS Rcon port


     

       
57

       
+

       
        allowedUDPPorts = [ 27015 ]; # Gameplay traffic


     

       
58

       
+

       
      })


     

       
59

       
+

       
    ];


     

       
60

       
 

       
  };


     

       
61

       
 

       



     

       
62

       
 

       
  meta.maintainers = with maintainers; [ mkg20001 ];