cilly/flakes
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1

containers/garnet: better ip filtering
Some checks are pending
CI / Build linux-lava for x86_64-linux (push) Waiting to run
Details

Browse source
This commit is contained in:
Cilly Leang 2026-05-28 23:04:35 +10:00
parent 1295d3f916
commit 4ab35c6f51
Signed by: cilly
GPG key ID: 6500251E087653C9
1 changed files with 7 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

8
containers/garnet/flake.nix
View file

@ -44,7 +44,13 @@
proxy_set_header Host $host;
'';
};
listenAddresses = [ "10.0.0.1" "[fd0d::1]" "100.67.1.1" ];
extraConfig = ''
allow 10.0.0.0/8;
allow 100.0.0.0/8;
allow 192.168.1.0/24;
allow fd0d::/8;
deny all;
'';
};
systemd.tmpfiles.rules = [