Add separate rules for v4 and v6

2024-04-05 20:07:27 +02:00 · 2024-04-05 20:07:27 +02:00 · dd633ba55b
parent d888bc60b7
commit dd633ba55b
1 changed files with 14 additions and 6 deletions
--- a/hosts/nachtigall/apps/forgejo.nix
+++ b/hosts/nachtigall/apps/forgejo.nix
@ -43,12 +43,20 @@

  # Expose SSH port only for forgejo SSH
  networking.firewall.interfaces.enp35s0.allowedTCPPorts = [ 2223 ];
-  networking.nat.forwardPorts = [{
-    proto = "tcp";
-    sourcePort = 22;
-    destination = "127.0.0.1:2223";
-    loopbackIPs = [ "138.201.80.102" "2a01:4f8:172:1c25::1" ];
-  }];
+  networking.nat.forwardPorts = [
+    {
+      proto = "tcp";
+      sourcePort = 22;
+      destination = "127.0.0.1:2223";
+      loopbackIPs = [ "138.201.80.102" ];
+    }
+    {
+      proto = "tcp";
+      sourcePort = 22;
+      destination = "[::1]:2223";
+      loopbackIPs = [ "2a01:4f8:172:1c25::1" ];
+    }
+  ];

  services.forgejo = {
    enable = true;