sourcephile / git / sourcephile-nix.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
nftables: specify wg-intra public IPv4 in fw2net
[sourcephile-nix.git] / machines / losurdo / prosody / biboumi.nix
diff --git a/machines/losurdo/prosody/biboumi.nix b/machines/losurdo/prosody/biboumi.nix
index df8ca9192f61bb6efd1c515b0f44824b0a0f2362..a206157266dacba7cbeab5ef523ed1e0a2cc1846 100644 (file)
--- a/machines/losurdo/prosody/biboumi.nix
+++ b/machines/losurdo/prosody/biboumi.nix
@@ -7,7 +7,7 @@ in
 {
 networking.nftables.ruleset = ''
   add rule inet filter net2fw tcp dport ${toString biboumi.settings.identd_port} counter accept comment "identd"
-  add rule inet filter fw2net meta skuid ${users.biboumi.name} tcp counter accept comment "Biboumi"
+  add rule inet filter fw2net meta skuid ${users.biboumi.name} meta l4proto tcp counter accept comment "Biboumi"
 '';
 users.users.biboumi.isSystemUser = true;
 systemd.services.biboumi.after = ["prosody.service"];
@@ -18,7 +18,7 @@ services.biboumi = {
     password = "useless-secret-on-loopback";
     xmpp_server_ip = "127.0.0.1";
     port = 5347;
-    admin = lib.concatStringsSep ":" [
+    admin = [
       "julm@${networking.domain}"
     ];
     #fixed_irc_server = "";
NixOS configurations for Sourcephile's infrastructure