penal-colony/nixos-vps
2
0
Fork 1
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions

fix(netdata): add firewall rule for direct Tailscale access

Browse source 
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
This commit is contained in:
ashisgreat22 2026-03-21 19:52:13 +00:00
parent a47e29ff70
commit ad55793d41
1 changed files with 5 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

5
modules/netdata.nix
View file

@ -53,6 +53,11 @@ in
internalOnly = true; internalOnly = true;
contentSecurityPolicy = null; # Netdata dashboard has its own CSP requirements, cannot be overridden contentSecurityPolicy = null; # Netdata dashboard has its own CSP requirements, cannot be overridden
}; };
# Allow direct Tailscale access to Netdata port
networking.firewall.extraCommands = lib.mkAfter ''
iptables -I INPUT 1 -p tcp --dport ${toString cfg.port} -s 100.64.0.0/10 -j ACCEPT
'';
}; };
} }