Commit 05d44c7
Changed files (1)
hosts
chaser-pardofelis
hosts/chaser-pardofelis/firewall.nix
@@ -0,0 +1,14 @@
+{...}: {
+ networking.firewall.enable = true;
+
+ services.fail2ban = {
+ enable = true;
+ maxretry = 3;
+ bantime = "10m";
+ bantime-increment.enable = true;
+ ignoreIP = [
+ "172.16.0.0/12"
+ "192.168.0.0/16"
+ ];
+ };
+}