From 53305dc496f7f15504a8ef2f1f9511fb0b2f78ab Mon Sep 17 00:00:00 2001
From: tv <tv@shackspace.de>
Date: Mon, 22 Jun 2015 15:24:09 +0200
Subject: tv: modularize iptables configuration

---
 modules/wu/default.nix | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

(limited to 'modules/wu/default.nix')

diff --git a/modules/wu/default.nix b/modules/wu/default.nix
index 68475ad5..76e8c6bb 100644
--- a/modules/wu/default.nix
+++ b/modules/wu/default.nix
@@ -9,7 +9,6 @@ in
 {
   imports = [
     ./hosts.nix
-    ./iptables.nix
     ../common/nixpkgs.nix
     ../tv/base.nix
     ../tv/exim-retiolum.nix
@@ -22,6 +21,18 @@ in
     ../tv/urxvt.nix
     ../tv/xserver.nix
     ../wu/users.nix
+    {
+      imports = [ ../tv/iptables ];
+      tv.iptables = {
+        enable = true;
+        input-internet-accept-new-tcp = [
+          "ssh"
+          "http"
+          "tinc"
+          "smtp"
+        ];
+      };
+    }
   ];
 
   nix.maxJobs = 8;
-- 
cgit v1.2.3