From 8c1083998056ef3ddfacdd5de2768656255a826b Mon Sep 17 00:00:00 2001
From: teutat3s <teutates@mailbox.org>
Date: Wed, 13 Dec 2023 00:27:10 +0100
Subject: [PATCH] wip: allow traffic from br-+ interfaces

---
 hosts/flora-6/apps/forgejo-actions-runner.nix | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/hosts/flora-6/apps/forgejo-actions-runner.nix b/hosts/flora-6/apps/forgejo-actions-runner.nix
index db297f5..28897ef 100644
--- a/hosts/flora-6/apps/forgejo-actions-runner.nix
+++ b/hosts/flora-6/apps/forgejo-actions-runner.nix
@@ -10,7 +10,9 @@
     mode = "644";
   };
 
-  networking.firewall.trustedInterfaces = [ "br-*" ];
+  # Trust docker bridge interface traffic
+  # Needed for the docker runner to communicate with the act_runner cache
+  networking.firewall.trustedInterfaces = [ "br-+" ];
 
   # forgejo actions runner
   # https://forgejo.org/docs/latest/admin/actions/