diff options
Diffstat (limited to 'daeva')
| -rw-r--r-- | daeva/configuration.nix | 5 | ||||
| -rw-r--r-- | daeva/nftables-rules.nft | 2 |
2 files changed, 5 insertions, 2 deletions
diff --git a/daeva/configuration.nix b/daeva/configuration.nix index fa0a9b1..f3a8481 100644 --- a/daeva/configuration.nix +++ b/daeva/configuration.nix @@ -14,11 +14,12 @@ ../secrets.nix ../services/clamav.nix ../services/dbus.nix - ../services/dnsmasq.nix + ../services/resolved.nix ../services/firewall.nix ../services/kde.nix ../services/haveged.nix ../services/logind.nix + ../services/networkmanager.nix ../services/podman.nix ../services/printing.nix ../services/sound.nix @@ -42,7 +43,7 @@ ../system/wireshark.nix ../system/yubikey-gpg.nix ../unfree.nix - ]; + ]; # Use the GRUB 2 boot loader. boot.loader.systemd-boot = { diff --git a/daeva/nftables-rules.nft b/daeva/nftables-rules.nft index 43234cd..0bc9d54 100644 --- a/daeva/nftables-rules.nft +++ b/daeva/nftables-rules.nft @@ -30,6 +30,8 @@ table inet filter { icmp type echo-request counter accept icmp type echo-reply counter accept udp dport domain counter accept + tcp dport domain-s counter accept + udp dport domain-s counter accept tcp dport http counter accept tcp dport https counter accept udp dport https counter accept |