Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: NixOS/nixpkgs
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: adc5c9b83df2
Choose a base ref
...
head repository: NixOS/nixpkgs
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: b6790790457c
Choose a head ref
  • 2 commits
  • 1 file changed
  • 2 contributors

Commits on Dec 20, 2017

  1. nixos/doc: document the firewall port ranges options

    @rnhmjoj
    rnhmjoj committed Dec 20, 2017

    Unverified

    This user has not yet uploaded their public signing key.
    GPG key ID: 91BE884FBA4B591A
    Learn about vigilant mode
    Copy the full SHA
    63af1f7 View commit details

  2. Merge pull request #32540 from rnhmjoj/portrange 

    nixos/doc: document the firewall port ranges options
    @orivej
    orivej authored Dec 20, 2017

    Verified

    This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
    GPG key ID: 4AEE18F83AFDEB23
    Expired
    Verified
    Learn about vigilant mode
    Copy the full SHA
    b679079 View commit details
Showing with 16 additions and 3 deletions.
  1. +16 −3 nixos/doc/manual/configuration/firewall.xml
19 changes: 16 additions & 3 deletions nixos/doc/manual/configuration/firewall.xml
View file
Original file line number Diff line number Diff line change
@@ -23,10 +23,23 @@ networking.firewall.allowedTCPPorts = [ 80 443 ];
</programlisting>

Note that TCP port 22 (ssh) is opened automatically if the SSH daemon
is enabled (<option>services.openssh.enable = true</option>). UDP
is enabled (<option>services.openssh.enable = true</option>). UDP
ports can be opened through
<option>networking.firewall.allowedUDPPorts</option>. Also of
interest is
<option>networking.firewall.allowedUDPPorts</option>.</para>

<para>To open ranges of TCP ports:

<programlisting>
networking.firewall.allowedTCPPortRanges = [
{ from = 4000; to = 4007; }
{ from = 8000; to = 8010; }
];
</programlisting>

Similarly, UDP port ranges can be opened through
<option>networking.firewall.allowedUDPPortRanges</option>.</para>

<para>Also of interest is

<programlisting>
networking.firewall.allowPing = true;