nixpkgs/nixos/modules/services/networking
Franz Pletz 76b21b7adb nixos/firewall: Refactor rpfilter, allow DHCPv4 (#17325)
Adds a new chain in the raw table for reverse path filtering and optional
logging. A rule to allow serving DHCPv4 was also added as it is commonly
needed and poses no security risk even when no DHCPv4 server is running.

Fixes #10101.
2016-07-31 13:49:24 +02:00
..
firefox firefox sync-server service: make path to paster executable absolute 2015-07-12 20:43:52 +12:00
ircd-hybrid Revert "stdenv: introduce baseHash() to replace stripHash()" 2016-06-25 14:25:58 +01:00
ssh typo in authorizedKeysFiles 2016-05-12 18:01:17 +03:00
aiccu.nix nixos: added aiccu service 2015-03-20 22:01:35 +01:00
amuled.nix jobs -> systemd.services 2016-01-07 06:39:06 +00:00
asterisk.nix service.asterisk: fix dir creation 2015-10-19 19:05:23 +02:00
atftpd.nix types.uniq types.bool -> types.bool 2015-06-15 18:10:26 +02:00
autossh.nix nixos: use "example.net" host name in autossh documentation 2015-10-28 20:04:36 +01:00
avahi-daemon.nix services/avahi: Add domainName setting 2016-06-26 23:15:39 +02:00
bind.nix bind: Split into multiple outputs 2016-05-14 22:12:59 +03:00
bird.nix bird module: run as user/group bird, not ircd 2016-03-07 02:02:58 +01:00
bitlbee.nix bitlbee service: enable plugins 2015-09-08 14:24:50 -07:00
btsync.nix nixos: btsync - switch to using systemd user services 2016-01-07 03:33:38 -06:00
charybdis.nix charybdis service: fix preStart script 2015-07-13 15:11:18 +02:00
chrony.nix services.*ntp*: Add time-sync.target to ntp clients (#15714) 2016-05-26 16:25:36 +02:00
cjdns-hosts.sh cjdns: add peer hostnames to extraHosts, option for external config 2014-10-21 13:16:04 -04:00
cjdns.nix nixos: fix cjdns json config 2015-04-25 09:40:44 -04:00
cntlm.nix cntlm: refactor to systemd service, fixes #11339 2015-12-07 15:40:43 +01:00
connman.nix nixos/connman: Fix assertion for networkmanager 2016-02-01 19:33:50 +01:00
consul.nix Fixes #16181 - using bin output for Go services 2016-06-13 23:32:16 +02:00
coturn.nix coturn: init at 4.5.0.3 (#16284) 2016-06-21 12:59:29 +02:00
ddclient.nix nixos/ddclient: add warning about password being world readable 2016-07-19 16:51:42 +02:00
dhcpcd.nix nixos networking: add vswitch option 2015-09-25 11:55:27 +02:00
dhcpd.nix nixos/dhcpd: Wait until network interfaces are configured to start 2014-08-13 15:08:43 -05:00
dnschain.nix dnschain nixos module: init 2015-09-10 18:11:40 +02:00
dnscrypt-proxy.nix dnscrypt-proxy service: update resolver list 2016-06-09 14:03:40 +02:00
dnsmasq.nix dnsmasq: create state dir for dhcp leases file 2015-12-24 22:36:19 +01:00
docker-registry-server.nix fix argument in mkEnableOption 2015-06-21 18:21:21 +03:00
ejabberd.nix Escape all shell arguments uniformly 2016-06-12 18:11:37 +01:00
fan.nix nixos: rename service 'ubuntu-fan' as 'fan' 2015-08-22 14:05:35 -04:00
firewall.nix nixos/firewall: Refactor rpfilter, allow DHCPv4 (#17325) 2016-07-31 13:49:24 +02:00
flashpolicyd.nix Rewrite ‘with pkgs.lib’ -> ‘with lib’ 2014-04-14 16:26:48 +02:00
freenet.nix types.uniq types.int -> types.int 2015-06-15 18:11:32 +02:00
gale.nix gale service: fix permissions configuration, fixes #12457 2016-01-20 02:09:40 +01:00
gateone.nix Gateone: fix cacerts dependency 2016-01-24 16:52:06 -05:00
git-daemon.nix jobs -> systemd.services 2016-01-07 06:39:06 +00:00
gnunet.nix Rewrite ‘with pkgs.lib’ -> ‘with lib’ 2014-04-14 16:26:48 +02:00
gogoclient.nix nixos/networking: Fixes 2014-11-26 16:29:24 -08:00
gvpe.nix jobs -> systemd.services 2016-01-07 06:39:06 +00:00
haproxy.nix nixos/haproxy: remove broken default 'config' 2015-02-22 12:30:14 +01:00
heyefi.nix heyefi service: make uploadDir path more generic and a string 2015-07-14 06:56:30 -07:00
hostapd.nix hostapd: rename extraCfg -> extraConfig, added asserts 2015-12-26 11:37:00 +01:00
i2p.nix i2p service: use mkEnableOption 2015-08-09 02:29:35 +02:00
i2pd.nix Merge branch 'master' into closure-size 2016-04-01 10:06:01 +02:00
iodine.nix iodine service: add clients implimentation 2016-03-26 21:16:29 -04:00
kippo.nix kippo: revert twisted dependency 2016-02-22 13:57:24 -05:00
lambdabot.nix Add missing 'type', 'defaultText' and 'literalExample' in module definitions 2016-01-17 19:41:23 +01:00
libreswan.nix libreswan: add package and service to nixos 2016-03-02 09:44:30 -05:00
logmein-hamachi.nix logmein-hamachi: init at 2.1.0.139, add nixos service 2016-04-27 16:15:01 +03:00
mailpile.nix mailpile: add module 2014-09-26 10:49:09 +02:00
mfi.nix mfi: relocatable data dir 2016-04-22 22:43:45 -07:00
minidlna.nix minidlna: use journalctl for logging, systemd for runtimedir 2016-04-08 23:04:12 +02:00
miniupnpd.nix miniupnpd: firewall config 2015-12-13 16:44:58 +01:00
mjpg-streamer.nix mjpg-streamer service: init 2016-03-12 18:53:02 +03:00
mosquitto.nix mosquitto service: init 2016-05-24 10:49:03 +02:00
mstpd.nix nixos/network-interfaces: Add mstpd support for bridges 2015-01-07 14:49:24 -08:00
murmur.nix murmur: sslCa and extraConfig options, fixes #11419 2015-12-22 01:28:39 +01:00
namecoind.nix namecoind nixos module: security enhancements 2015-09-10 18:11:40 +02:00
nat.nix Revert "nixos/nat: Allow nat without an externalInterface" 2016-05-12 11:04:06 +01:00
networkmanager.nix networkmanager: Dependency on avahi-autoipd has been dropped. 2016-06-23 23:12:41 +02:00
ngircd.nix Add missing 'type', 'defaultText' and 'literalExample' in module definitions 2016-01-17 19:41:23 +01:00
nix-serve.nix treewide: Use correct output of config.nix.package in non-string contexts 2016-04-25 16:44:38 +02:00
nntp-proxy.nix treewide: Mass replace 'openssl}/bin' to refer to the correct outputs 2016-04-14 08:32:20 +03:00
nsd.nix wheter → whether 2016-03-07 03:06:54 +01:00
ntopng.nix types.uniq types.int -> types.int 2015-06-15 18:11:32 +02:00
ntpd.nix services.*ntp*: Add time-sync.target to ntp clients (#15714) 2016-05-26 16:25:36 +02:00
nylon.nix nixos: adding nylon service with uid,gid 2015-01-14 22:08:47 +01:00
offlineimap.nix offlineimap: add nixos module (#16842) 2016-07-11 10:37:18 +02:00
oidentd.nix jobs -> systemd.services 2016-01-07 06:39:06 +00:00
openfire.nix jobs -> systemd.services 2016-01-07 06:39:06 +00:00
openntpd.nix services.*ntp*: Add time-sync.target to ntp clients (#15714) 2016-05-26 16:25:36 +02:00
openvpn.nix nixos/openvpn: add support for resolvconf 2016-06-06 20:43:52 +02:00
ostinato.nix ostinato: add ostinato in NixOS services 2016-01-04 14:29:02 +08:00
pdnsd.nix pdnsd service: init 2016-02-12 19:53:41 +08:00
polipo.nix Some more type cleanup 2015-06-15 18:18:46 +02:00
pptpd.nix xl2tpd: add nixos module for service 2016-06-20 21:41:59 +01:00
prayer.nix jobs -> systemd.services 2016-01-07 06:39:06 +00:00
privoxy.nix privoxy: upstart to systemd conversion, actions file editing 2014-08-27 11:34:10 -04:00
prosody.nix prosody: added websocket support 2014-10-15 03:57:00 +02:00
quassel.nix quassel: use qt4 version of the daemon because as of now qt5 version fails to use proxies(connection refused) 2016-04-22 12:59:26 +03:00
racoon.nix nixos/racoon: create /var/racoon upon start 2015-08-19 23:38:44 +02:00
radicale.nix radicale service: run with dedicated user 2016-03-20 15:50:14 +01:00
radvd.nix nixos/radvd: Convert to a systemd unit 2014-08-24 03:12:55 -07:00
rdnssd.nix nixos/rdnssd: Major refactoring 2015-04-04 21:20:07 -07:00
rpcbind.nix Rewrite ‘with pkgs.lib’ -> ‘with lib’ 2014-04-14 16:26:48 +02:00
sabnzbd.nix Sane default configuration for sabnzbd module 2015-05-05 00:18:22 -04:00
searx.nix Rewrite ‘with pkgs.lib’ -> ‘with lib’ 2014-04-14 16:26:48 +02:00
seeks.nix Manual: Remove store path references 2015-09-24 11:50:58 +02:00
shairport-sync.nix nixos: fix avahi connectivity for shairport-sync module 2016-07-08 16:22:51 +02:00
shout.nix Shout: fix infinite loop in service configuration 2016-04-11 09:58:52 -04:00
skydns.nix Fixes #16181 - using bin output for Go services 2016-06-13 23:32:16 +02:00
smokeping.nix smokeping: init at 2.6.11 (#17090) 2016-07-21 01:07:59 +02:00
sniproxy.nix sniproxy service: init 2016-05-11 13:27:28 +08:00
softether.nix softether: Fixed problems with using systemd services 2016-01-20 03:47:33 +01:00
spiped.nix nixos: only enable spipe when user specifies 2014-04-25 05:42:00 -05:00
sslh.nix nixos/sslh: rename 'host' to 'listenAddress' 2015-12-24 00:23:51 +01:00
strongswan.nix strongswan service: use config.system.sbin.modprobe instead of kmod 2015-11-30 01:50:57 +01:00
supplicant.nix Add missing 'type', 'defaultText' and 'literalExample' in module definitions 2016-01-17 19:41:23 +01:00
supybot.nix Rewrite ‘with pkgs.lib’ -> ‘with lib’ 2014-04-14 16:26:48 +02:00
syncthing.nix syncthing: fix system service 2016-07-26 13:10:15 +03:00
tcpcrypt.nix jobs -> systemd.services 2016-01-07 06:39:06 +00:00
teamspeak3.nix teamspeak-server module: Create data directory by 2016-05-12 20:49:17 +10:00
tftpd.nix nixos/tftpd: add option types and fixup descriptions 2015-02-01 15:57:28 +01:00
tinc.nix tinc: add Restart in systemd service config 2016-07-27 10:38:57 +02:00
tlsdated.nix tlsdated: add missing default value for extraOptions 2016-02-18 05:29:12 +01:00
tox-bootstrapd.nix Fix user-facing typos (mainly in descriptions) 2014-12-30 03:31:03 +01:00
toxvpn.nix toxvpn: restartIfChanged = false & minor cleanups 2016-05-30 14:23:52 +01:00
tvheadend.nix tvheadend: init at 4.0.4 2015-06-24 13:22:09 +00:00
unbound.nix unbound service: do not initialize root cert 2016-05-21 22:27:27 +02:00
unifi.nix unifi: relocatable data dir 2016-04-22 22:43:55 -07:00
vsftpd.nix vsftpd.nix: Add possibility to add RSA key file 2016-03-09 01:32:44 +00:00
wakeonlan.nix Fixed wrong documentation for Wake-On-LAN feature 2015-10-31 12:55:34 +01:00
websockify.nix Rewrite ‘with pkgs.lib’ -> ‘with lib’ 2014-04-14 16:26:48 +02:00
wicd.nix jobs -> systemd.services 2016-01-07 06:39:06 +00:00
wpa_supplicant.nix wpa_supplicant: start after wireless interfaces 2016-06-16 00:22:08 +02:00
xinetd.nix jobs -> systemd.services 2016-01-07 06:39:06 +00:00
xl2tpd.nix xl2tpd: add nixos module for service 2016-06-20 21:41:59 +01:00
zerobin.nix zerobin service : init 2016-04-25 13:18:58 +02:00
zerotierone.nix nixos: disable DHCP on ZeroTier interfaces 2016-07-23 21:04:42 +02:00
znc.nix Some more type cleanup 2015-06-15 18:18:46 +02:00