From 979027ce543c9bb1a5c671bf54546f5712fc5ba1 Mon Sep 17 00:00:00 2001 From: Skyler Grey Date: Thu, 18 Sep 2025 18:03:09 +0000 Subject: [PATCH] fix(spindle): open firewall for all interfaces Change-Id: rustrvvuurlspzwkwvnuntxwzqnsusxm There's a race condition here where teal sometimes looks up midnight when not connected to tailscale. If it does that, it resolves midnight on the local network. That would be entirely fine if we weren't just listening on Tailscale. Further, that lookup can then get cached, bringing down the spindle even when tailscale comes up We trust the local network, let's just allow this route too... --- packetmix/systems/midnight/spindle.nix | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packetmix/systems/midnight/spindle.nix b/packetmix/systems/midnight/spindle.nix index 7042460e..075e5197 100644 --- a/packetmix/systems/midnight/spindle.nix +++ b/packetmix/systems/midnight/spindle.nix @@ -6,7 +6,7 @@ { imports = [ project.inputs.tangled.result.nixosModules.spindle ]; - networking.firewall.interfaces."tailscale0".allowedTCPPorts = [ 1024 ]; + networking.firewall.allowedTCPPorts = [ 1024 ]; services.tangled-spindle = { enable = true; -- 2.43.0