ma x: allow virtualbox firewall

author: makefu <github@syntax-fehler.de> 2017-08-16 12:14:00 +0200
committer: makefu <github@syntax-fehler.de> 2017-08-16 12:31:57 +0200
commit: edb24e8d7ca7028217f4eebd0354e2f48ec2ef22 (patch)
tree: b744bd90bcd5d92fbcd83d31bb855c3e038138b1 /makefu/1systems/x
parent: 842c62e6cd12df0fbbfe3ceda00242e366009cb4 (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/makefu/1systems/x/config.nix b/makefu/1systems/x/config.nix
index 36865557..8e8c8a73 100644
--- a/makefu/1systems/x/config.nix
+++ b/makefu/1systems/x/config.nix
@@ -42,6 +42,14 @@ with import <stockholm/lib>;
       <stockholm/makefu/2configs/virtualisation/libvirt.nix>
       <stockholm/makefu/2configs/virtualisation/docker.nix>
       <stockholm/makefu/2configs/virtualisation/virtualbox.nix>
+      {
+        networking.firewall.allowedTCPPorts = [ 8080 ];
+        networking.nat = {
+          enable = true;
+          externalInterface = "wlp3s0";
+          internalInterfaces = [ "vboxnet0" ];
+        };
+      }
 
       # Services
       <stockholm/makefu/2configs/git/brain-retiolum.nix>
@@ -81,6 +89,7 @@ with import <stockholm/lib>;
   networking.firewall.enable = true;
   networking.firewall.allowedTCPPorts = [ 80 24800 26061 8000 3000 ];
   networking.firewall.allowedUDPPorts = [ 665 26061 ];
+  networking.firewall.trustedInterfaces = [ "vboxnet0" ];
 
   krebs.build.host = config.krebs.hosts.x;
author	makefu <github@syntax-fehler.de>	2017-08-16 12:14:00 +0200
committer	makefu <github@syntax-fehler.de>	2017-08-16 12:31:57 +0200
commit	edb24e8d7ca7028217f4eebd0354e2f48ec2ef22 (patch)
tree	b744bd90bcd5d92fbcd83d31bb855c3e038138b1 /makefu/1systems/x
parent	842c62e6cd12df0fbbfe3ceda00242e366009cb4 (diff)