From 593514c100d33f0e8035747f19b86a96bb82f0d6 Mon Sep 17 00:00:00 2001
From: soraefir <soraefir+git@helcel>
Date: Fri, 8 May 2026 01:21:56 +0200
Subject: [PATCH] fix ssh

---
 modules/server/nftables/default.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/server/nftables/default.nix b/modules/server/nftables/default.nix
index 1c9a4f6..5ba2ca7 100644
--- a/modules/server/nftables/default.nix
+++ b/modules/server/nftables/default.nix
@@ -14,7 +14,7 @@ in{
           type filter hook input priority filter; policy drop;
           ct state established,related accept
           iifname "lo" accept
-          tcp dport {22} accept
+          tcp dport {422, 22} accept
           ${if builtins.length cfg.db > 0 then ''tcp dport {5432, 6379} ip saddr { 10.0.0.0/8, 169.254.0.0/16 } accept'' else ""}
           ${if cfg.web then ''tcp dport {80, 443} accept
           udp dport {80, 443} accept'' else ""}