diff options
| author | Mel <einebeere@gmail.com> | 2024-12-06 22:16:07 +0100 |
|---|---|---|
| committer | Mel <einebeere@gmail.com> | 2024-12-06 22:16:07 +0100 |
| commit | 8930b867a5bc863cf1362d3d27579e784a4bbe97 (patch) | |
| tree | ba8b4188882bada06679a33dc99a257c5127d1a0 /modules | |
| parent | 4d2e7db5cf8e89590c9f8b342cc487d500c0e822 (diff) | |
| download | network-8930b867a5bc863cf1362d3d27579e784a4bbe97.tar.zst network-8930b867a5bc863cf1362d3d27579e784a4bbe97.zip | |
Only listen on port 22 through tailnet
Signed-off-by: Mel <einebeere@gmail.com>
Diffstat (limited to 'modules')
| -rw-r--r-- | modules/common.nix | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/modules/common.nix b/modules/common.nix index 4a66a70..ad47ca5 100644 --- a/modules/common.nix +++ b/modules/common.nix @@ -48,6 +48,8 @@ services = { openssh = { enable = true; + openFirewall = false; + listenAddresses = [{ addr = me.tailscale.ip; port = 22; }]; settings = { PasswordAuthentication = false; KbdInteractiveAuthentication = false; |