nixos/pihole-ftl: fix openFirewall ports (#424348)

pyrox.dev / nixpkgs

fork atom

lol

fork atom

authored by

Aleksana and committed by

GitHub 8 months ago c19390a9 b76aaded

+12 -1

2 changed files

expand all

nixos

modules

services

networking

pihole-ftl.md

pihole-ftl.nix

nixos/modules/services/networking/pihole-ftl.md

··· 22 22 { 23 23 services.pihole-ftl = { 24 24 enable = true; 25 + openFirewallDNS = true; 25 26 openFirewallDHCP = true; 26 27 queryLogDeleter.enable = true; 27 28 lists = [

+11 -1

nixos/modules/services/networking/pihole-ftl.nix

··· 56 56 example = "3"; 57 57 }; 58 58 59 + openFirewallDNS = mkOption { 60 + type = types.bool; 61 + default = false; 62 + description = "Open ports in the firewall for pihole-FTL's DNS server."; 63 + }; 64 + 59 65 openFirewallDHCP = mkOption { 60 66 type = types.bool; 61 67 default = false; ··· 434 440 }; 435 441 436 442 networking.firewall = lib.mkMerge [ 437 - (mkIf cfg.openFirewallDHCP { 443 + (mkIf cfg.openFirewallDNS { 438 444 allowedUDPPorts = [ 53 ]; 439 445 allowedTCPPorts = [ 53 ]; 446 + }) 447 + 448 + (mkIf cfg.openFirewallDHCP { 449 + allowedUDPPorts = [ 67 ]; 440 450 }) 441 451 442 452 (mkIf cfg.openFirewallWebserver {