modules/tv/iptables/options.nix


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29

{ lib, ... }:

let
  inherit (lib) mkOption types;
in

{
  enable = mkOption {
    type = types.bool;
    default = false;
    description = "Enable iptables.";
  };

  input-internet-accept-new-tcp = mkOption {
    type = with types; listOf str;
    default = [];
    description = ''
      ip{4,6}tables -A INPUT -j ACCEPT -p tcp --dport $port -m conntrack --ctstate NEW
    '';
  };

  input-retiolum-accept-new-tcp = mkOption {
    type = with types; listOf str;
    default = [];
    description = ''
      ip{4,6}tables -A Retiolum -j ACCEPT -p tcp --dport $port -m conntrack --ctstate NEW
    '';
  };
}