Merge pull request #32540 from rnhmjoj/portrange

nixos/doc: document the firewall port ranges options
This commit is contained in:
Orivej Desh 2017-12-20 23:51:08 +00:00 committed by GitHub
commit b679079045
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -25,8 +25,21 @@ networking.firewall.allowedTCPPorts = [ 80 443 ];
Note that TCP port 22 (ssh) is opened automatically if the SSH daemon Note that TCP port 22 (ssh) is opened automatically if the SSH daemon
is enabled (<option>services.openssh.enable = true</option>). UDP is enabled (<option>services.openssh.enable = true</option>). UDP
ports can be opened through ports can be opened through
<option>networking.firewall.allowedUDPPorts</option>. Also of <option>networking.firewall.allowedUDPPorts</option>.</para>
interest is
<para>To open ranges of TCP ports:
<programlisting>
networking.firewall.allowedTCPPortRanges = [
{ from = 4000; to = 4007; }
{ from = 8000; to = 8010; }
];
</programlisting>
Similarly, UDP port ranges can be opened through
<option>networking.firewall.allowedUDPPortRanges</option>.</para>
<para>Also of interest is
<programlisting> <programlisting>
networking.firewall.allowPing = true; networking.firewall.allowPing = true;