host/server/default | remove unneeded code

2025-08-07 17:14:21 -05:00 · 2025-08-07 17:14:21 -05:00 · c54b9130c3
commit c54b9130c3
parent f00487236c
1 changed files with 0 additions and 18 deletions
--- a/hosts/server/default.nix
+++ b/hosts/server/default.nix
@ -198,11 +198,8 @@ in {
  # Open ports in the firewall.
  networking.firewall = {
    enable = true;
-    # always allow traffic from your Tailscale network
    trustedInterfaces = [ "tailscale0" ];
    checkReversePath = "loose";
-
-    # allow the Tailscale UDP port through the firewall
    allowedUDPPorts = [ config.services.tailscale.port ];
    allowedTCPPortRanges = [{
      from = 1714;
@ -212,22 +209,7 @@ in {
      from = 1714;
      to = 1764;
    }];
-
-    # allow you to SSH in over the public internet
    allowedTCPPorts = [ 22 ];
-    interfaces = {
-      "tailscale0" = {
-        allowedTCPPorts = [ 22 8080 8443 ];
-        allowedTCPPortRanges = [{
-          from = 1714;
-          to = 1764;
-        }];
-        allowedUDPPortRanges = [{
-          from = 1714;
-          to = 1764;
-        }];
-      };
-    };
  };

  # This value determines the NixOS release from which the default