From d5978bc46aa7fa16e90d9ae067e5e2a894b6f275 Mon Sep 17 00:00:00 2001 From: "quentin@aristote.fr" Date: Mon, 13 May 2024 21:49:26 +0200 Subject: firewall: fix sonos rules --- config/networking/default.nix | 4 ++-- config/networking/services/firewall/ruleset.nix | 10 +++++----- 2 files changed, 7 insertions(+), 7 deletions(-) (limited to 'config') diff --git a/config/networking/default.nix b/config/networking/default.nix index a3486be..087f791 100644 --- a/config/networking/default.nix +++ b/config/networking/default.nix @@ -73,8 +73,8 @@ in { subnet = "192.168.3"; machines = { self.address = "192.168.3.1"; - sonos-move.address = "192.168.3.28"; - sonos-play1.address = "192.168.3.29"; + sonos-move.address = "192.168.3.10"; + sonos-play1.address = "192.168.3.11"; }; }; eth0 = let device = "enp3s0"; diff --git a/config/networking/services/firewall/ruleset.nix b/config/networking/services/firewall/ruleset.nix index a164ea2..bef7dad 100644 --- a/config/networking/services/firewall/ruleset.nix +++ b/config/networking/services/firewall/ruleset.nix @@ -76,10 +76,10 @@ let player-controller = '' ip protocol udp \ ip saddr { ${nets.iot.machines.sonos-move.address} \ - , ${nets.iot.machines.sonos-play1.address} } - udp sport >30000 - udp dport >30000 - accept comment "sonos: app control: player to controller" + , ${nets.iot.machines.sonos-play1.address} } \ + udp sport >30000 \ + udp dport >30000 \ + accept comment "sonos: app control: player to controller" ip protocol tcp \ tcp dport { 3400, 3401, 3500 } \ accept comment "sonos: app control: player to controller" @@ -166,7 +166,7 @@ in { , ${nets.iot.machines.sonos-play1.address} } \ ip daddr { ${nets.iot.machines.sonos-move.address} \ , ${nets.iot.machines.sonos-play1.address} } \ - accept comment "sonos: player to player" + accept comment "sonos: player to player" '' + ssdp + sonos.player-controller + sonos.controller-player; wan_wan.rules = with rulesCommon; syncthing + kdeconnect; forward = makeBaseChain "filter" "forward" { -- cgit v1.2.3