18 lines
235 B
Nix
18 lines
235 B
Nix
{
|
|
config,
|
|
lib,
|
|
pkgs,
|
|
...
|
|
}: let
|
|
in {
|
|
networking = {
|
|
# use nftables over iptables
|
|
nftables.enable = true;
|
|
|
|
firewall = {
|
|
enable = true;
|
|
allowPing = false;
|
|
logReversePathDrops = true;
|
|
};
|
|
};
|
|
}
|