nebula: enable service

[julm/julm-nix.git] / hosts / oignon / networking / nftables.nix

diff --git a/hosts/oignon/networking/nftables.nix b/hosts/oignon/networking/nftables.nix
index 0de752fe1fbe4c575fe8586d929cf67c7a395afe..8ebec85a0f4f3b8c5e0f5b22231d88edf19cfb72 100644 (file)
--- a/hosts/oignon/networking/nftables.nix
+++ b/hosts/oignon/networking/nftables.nix
@@ -26,6 +26,7 @@ in
         }
 
         chain output-lan {
+          tcp dport { http, https } counter accept comment "HTTP(s)"
           tcp dport { ssh, 2222 } counter accept comment "SSH"
           udp dport 60001-60100 counter accept comment "Mosh"
           tcp dport bootps counter accept comment "DHCP"