oignon: nftables: output-net: open XMPP client direct TLS

[julm/julm-nix.git] / nixos / profiles / openvpn / calyx.nix

diff --git a/nixos/profiles/openvpn/calyx.nix b/nixos/profiles/openvpn/calyx.nix
index e9acb5c6960d1adaa044b3a676c2505092ef5869..b31a9223b044a1ccf390382cedead5d3ed3fbfee 100644 (file)
--- a/nixos/profiles/openvpn/calyx.nix
+++ b/nixos/profiles/openvpn/calyx.nix
@@ -76,6 +76,7 @@ in
         }
         chain output-net {
           tcp dport { http, https } counter accept comment "HTTP"
+          log prefix "calyx: output-net: " counter drop
         }
         chain output {
           ip daddr 10.0.0.0/8 counter goto output-lan
@@ -83,7 +84,7 @@ in
           ip daddr 192.168.0.0/16 counter goto output-lan
           ip daddr 224.0.0.0/3 counter goto output-lan
           jump output-net
-          log prefix "calyx: output-net: " counter drop
+          log prefix "calyx: output: " counter drop
         }
       }
     '';