]> Git — Sourcephile - julm/julm-nix.git/blob - nixos/profiles/tor.nix
sourcephile / git / julm / julm-nix.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
+user/operability(nftables)(output-net)(tor): open TCP to any
[julm/julm-nix.git] / nixos / profiles / tor.nix
1 { pkgs, config, ... }:
2 let
3 inherit (config.users) users;
4 in
5 {
6 environment.systemPackages = [
7 pkgs.nyx
8 ];
9 services.tor = {
10 enable = true;
11 enableGeoIP = true;
12 controlSocket.enable = true;
13 client.enable = true;
14 };
15 services.privoxy.enable = true;
16 services.privoxy.enableTor = true;
17 networking.nftables.ruleset = ''
18 table inet filter {
19 chain output-net {
20 meta skuid ${users.tor.name} \
21 meta l4proto tcp \
22 counter accept \
23 comment "Tor"
24 }
25 }
26 '';
27 }
julm's NixOS and home-manager configs