From 5e72233400ed8c8b586e3e991687e2bebfc9578d Mon Sep 17 00:00:00 2001
From: ooks-io <ooks@protonmail.com>
Date: Tue, 29 Oct 2024 16:42:39 +1100
Subject: [PATCH] firewall: add ssh ports

---
 modules/nixos/base/security/firewall.nix | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/modules/nixos/base/security/firewall.nix b/modules/nixos/base/security/firewall.nix
index 0781c7f..1fe45c9 100644
--- a/modules/nixos/base/security/firewall.nix
+++ b/modules/nixos/base/security/firewall.nix
@@ -2,6 +2,12 @@
   networking.firewall = {
     enable = true;
 
+    allowedTCPPorts = [
+      22 # SSH
+      80
+      443
+    ];
+
     # dont respond to icmpv4 pings.
     allowPing = false;
   };