diff options
author | Reuben D'Netto <rdnetto@gmail.com> | 2018-04-05 18:43:56 +1000 |
---|---|---|
committer | Reuben D'Netto <rdnetto@gmail.com> | 2018-04-12 09:39:14 +1000 |
commit | 42a84598fb7baacc991c03e228a07a536bc0624a (patch) | |
tree | a851974a590af5863bc2235e33a4670ce6c72a0c /nixos/doc/manual/configuration/firewall.xml | |
parent | a683d2cd00780cf7d20caeeef44deb4cc60d2add (diff) | |
download | nixlib-42a84598fb7baacc991c03e228a07a536bc0624a.tar nixlib-42a84598fb7baacc991c03e228a07a536bc0624a.tar.gz nixlib-42a84598fb7baacc991c03e228a07a536bc0624a.tar.bz2 nixlib-42a84598fb7baacc991c03e228a07a536bc0624a.tar.lz nixlib-42a84598fb7baacc991c03e228a07a536bc0624a.tar.xz nixlib-42a84598fb7baacc991c03e228a07a536bc0624a.tar.zst nixlib-42a84598fb7baacc991c03e228a07a536bc0624a.zip |
Added cross-references to NixOS manual
Diffstat (limited to 'nixos/doc/manual/configuration/firewall.xml')
-rw-r--r-- | nixos/doc/manual/configuration/firewall.xml | 14 |
1 files changed, 7 insertions, 7 deletions
diff --git a/nixos/doc/manual/configuration/firewall.xml b/nixos/doc/manual/configuration/firewall.xml index 75cccef95b38..ecc21a3bdf51 100644 --- a/nixos/doc/manual/configuration/firewall.xml +++ b/nixos/doc/manual/configuration/firewall.xml @@ -12,37 +12,37 @@ both IPv4 and IPv6 traffic. It is enabled by default. It can be disabled as follows: <programlisting> -networking.firewall.enable = false; +<xref linkend="opt-networking.firewall.enable"/> = false; </programlisting> If the firewall is enabled, you can open specific TCP ports to the outside world: <programlisting> -networking.firewall.allowedTCPPorts = [ 80 443 ]; +<xref linkend="opt-networking.firewall.allowedTCPPorts"/> = [ 80 443 ]; </programlisting> Note that TCP port 22 (ssh) is opened automatically if the SSH daemon -is enabled (<option>services.openssh.enable = true</option>). UDP +is enabled (<option><xref linkend="opt-services.openssh.enable"/> = true</option>). UDP ports can be opened through -<option>networking.firewall.allowedUDPPorts</option>.</para> +<xref linkend="opt-networking.firewall.allowedUDPPorts"/>.</para> <para>To open ranges of TCP ports: <programlisting> -networking.firewall.allowedTCPPortRanges = [ +<xref linkend="opt-networking.firewall.allowedTCPPortRanges"/> = [ { from = 4000; to = 4007; } { from = 8000; to = 8010; } ]; </programlisting> Similarly, UDP port ranges can be opened through -<option>networking.firewall.allowedUDPPortRanges</option>.</para> +<xref linkend="opt-networking.firewall.allowedUDPPortRanges"/>.</para> <para>Also of interest is <programlisting> -networking.firewall.allowPing = true; +<xref linkend="opt-networking.firewall.allowPing"/> = true; </programlisting> to allow the machine to respond to ping requests. (ICMPv6 pings are |