fix ssh

2026-05-08 01:21:56 +02:00
parent 6ad9a0b34c
commit 593514c100
1 changed files with 1 additions and 1 deletions
--- a/modules/server/nftables/default.nix
+++ b/modules/server/nftables/default.nix
@@ -14,7 +14,7 @@ in{
          type filter hook input priority filter; policy drop;
          ct state established,related accept
          iifname "lo" accept
-          tcp dport {22} accept
+          tcp dport {422, 22} accept
          ${if builtins.length cfg.db > 0 then ''tcp dport {5432, 6379} ip saddr { 10.0.0.0/8, 169.254.0.0/16 } accept'' else ""}
          ${if cfg.web then ''tcp dport {80, 443} accept
          udp dport {80, 443} accept'' else ""}