lyes/nixfiles
1
0
Fork 0
Code Issues Pull requests Activity Actions

Fix firewall

Browse source
This commit is contained in:
Lyes Saadi 2026-01-06 20:41:47 +01:00
parent dbe550f9fe
commit 29b68823ad
Signed by: lyes
GPG key ID: 55A1D803917CF39A
1 changed files with 15 additions and 15 deletions
Download patch file Download diff file Expand all files Collapse all files

30
hosts/zora/networking.nix
View file

@ -52,20 +52,20 @@
};
# Imposing a bandwidth limit to avoid Aurore/Crans disruptions
networking.nftables = {
tables.rate_limit = {
name = "rate_limit";
family = "inet";
enable = true;
content = ''
limit lim { rate over 20 mbytes/second burst 40 mbytes ; comment "use to limit taffic" ; }
# networking.nftables = {
# tables.rate_limit = {
# name = "rate_limit";
# family = "inet";
# enable = true;
# content = ''
# limit lim { rate over 20 mbytes/second burst 40 mbytes ; comment "use to limit taffic" ; }
chain IN {
type filter hook input priority filter; policy drop;
tcp dport 80 limit name "lim" accept
tcp dport 443 limit name "lim" accept
}
'';
};
};
# chain IN {
# type filter hook input priority filter; policy drop;
# tcp dport 80 limit name "lim" accept
# tcp dport 443 limit name "lim" accept
# }
# '';
# };
# };
}