From a18d647cb39db8e90579d84c563eb262de868ba3 Mon Sep 17 00:00:00 2001
From: "Casper V. Kristensen" <casper@vkristensen.dk>
Date: Fri, 10 May 2024 16:36:10 +0200
Subject: [PATCH] sigma: allow ad hoc ports in firewall

---
 hosts/sigma/network.nix | 28 ++++++++++++++++++----------
 1 file changed, 18 insertions(+), 10 deletions(-)

diff --git a/hosts/sigma/network.nix b/hosts/sigma/network.nix
index a3f598f..0fab933 100644
--- a/hosts/sigma/network.nix
+++ b/hosts/sigma/network.nix
@@ -136,27 +136,35 @@
     allowedUDPPortRanges = lib.mkForce [];
     interfaces = {
       "enp5s0" = {
+        allowedTCPPorts = [
+          1234 # ad hoc
+          1337 # ad hoc
+          139 # Samba
+          22 # SSH
+          25 # Mail SMTP
+          443 # Caddy
+          445 # Samba
+          465 # Mail ESMTP
+          8000 # ad hoc
+          8080 # ad hoc
+          80 # Caddy
+          993 # Mail IMAPS
+        ];
         allowedUDPPorts = [
           139 # Samba
           445 # Samba
         ];
-        allowedTCPPorts = [
-          139 # Samba
-          22 # SSH
-          25 # Mail SMTP
-          443 # Caddy
-          445 # Samba
-          465 # Mail ESMTP
-          80 # Caddy
-          993 # Mail IMAPS
-        ];
       };
       "wg-sigma-public" = {
         allowedTCPPorts = [
+          1234 # ad hoc
+          1337 # ad hoc
           22 # SSH
           25 # Mail SMTP
           443 # Caddy
           465 # Mail ESMTP
+          8000 # ad hoc
+          8080 # ad hoc
           80 # Caddy
           993 # Mail IMAPS
         ];