firewall: allow postgres connections out

Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
author: Kenny Ballou <kballou@devnulllabs.io> 2019-09-26 18:22:28 -0600
committer: Kenny Ballou <kballou@devnulllabs.io> 2019-09-26 18:22:28 -0600
commit: d6df055d31fd61b931d7130dd2c56e89201fa4e1 (patch)
tree: 6a877d0d1078e0a28139e547da10f0eed3131677 /services
parent: 9417463a85043061fc79e7d51f5a8c9a08066c4f (diff)
download: cfg.nix-d6df055d31fd61b931d7130dd2c56e89201fa4e1.tar.gz
cfg.nix-d6df055d31fd61b931d7130dd2c56e89201fa4e1.tar.xz
1 files changed, 1 insertions, 0 deletions
diff --git a/services/nftables-rules.nft b/services/nftables-rules.nft
index a195c83..2c58e3d 100644
--- a/services/nftables-rules.nft
+++ b/services/nftables-rules.nft
@@ -53,6 +53,7 @@ table inet filter {
         tcp dport http-alt counter accept
         tcp dport 3000 ip daddr 127.0.0.1/8 counter accept
         udp dport openvpn counter accept
+        tcp dport postgresql ip daddr counter accept
         counter
     }
 }
author	Kenny Ballou <kballou@devnulllabs.io>	2019-09-26 18:22:28 -0600
committer	Kenny Ballou <kballou@devnulllabs.io>	2019-09-26 18:22:28 -0600
commit	d6df055d31fd61b931d7130dd2c56e89201fa4e1 (patch)
tree	6a877d0d1078e0a28139e547da10f0eed3131677 /services
parent	9417463a85043061fc79e7d51f5a8c9a08066c4f (diff)
download	cfg.nix-d6df055d31fd61b931d7130dd2c56e89201fa4e1.tar.gz cfg.nix-d6df055d31fd61b931d7130dd2c56e89201fa4e1.tar.xz