From c54b9130c3f17054730d8a61ad1373dd0ef05cf6 Mon Sep 17 00:00:00 2001
From: Don Harper <duck@duckland.org>
Date: Thu, 7 Aug 2025 17:14:21 -0500
Subject: [PATCH] host/server/default | remove unneeded code

---
 hosts/server/default.nix | 18 ------------------
 1 file changed, 18 deletions(-)

diff --git a/hosts/server/default.nix b/hosts/server/default.nix
index e925afd..fa37b2d 100644
--- a/hosts/server/default.nix
+++ b/hosts/server/default.nix
@@ -198,11 +198,8 @@ in {
   # Open ports in the firewall.
   networking.firewall = {
     enable = true;
-    # always allow traffic from your Tailscale network
     trustedInterfaces = [ "tailscale0" ];
     checkReversePath = "loose";
-
-    # allow the Tailscale UDP port through the firewall
     allowedUDPPorts = [ config.services.tailscale.port ];
     allowedTCPPortRanges = [{
       from = 1714;
@@ -212,22 +209,7 @@ in {
       from = 1714;
       to = 1764;
     }];
-
-    # allow you to SSH in over the public internet
     allowedTCPPorts = [ 22 ];
-    interfaces = {
-      "tailscale0" = {
-        allowedTCPPorts = [ 22 8080 8443 ];
-        allowedTCPPortRanges = [{
-          from = 1714;
-          to = 1764;
-        }];
-        allowedUDPPortRanges = [{
-          from = 1714;
-          to = 1764;
-        }];
-      };
-    };
   };
 
   # This value determines the NixOS release from which the default