Commit `10bbd0177f93`

Vincent Demeester <vincent@sbr.pm>

2019-01-18 18:53:45

hokkaido: open firewall for VMs :)

Signed-off-by: Vincent Demeester <vincent@sbr.pm>

main

1 parent 9e31665

Changed files (1)

machine

hokkaido.nix

@@ -2,8 +2,15 @@
 
 with import ../assets/machines.nix; {
   imports = [ ../hardware/thinkpad-x220.nix ./home.nix ];
+  boot = {
+    kernel.sysctl = {
+      "net.bridge.bridge-nf-call-arptables" = 0;
+      "net.bridge.bridge-nf-call-iptables" = 0;
+      "net.bridge.bridge-nf-call-ip6tables" = 0;
+    };
+  };
   networking = {
-    firewall.allowPing = true;
+    firewall.enable = false; # we are in safe territory :D
     bridges.br1.interfaces = [ "enp0s25" ];
     interfaces.enp0s25 = {
       useDHCP = true;

Commit 10bbd0177f93

Commit `10bbd0177f93`