diff options
author | Izorkin <izorkin@elven.pw> | 2020-03-17 22:24:48 +0300 |
---|---|---|
committer | Izorkin <izorkin@elven.pw> | 2020-03-18 09:54:19 +0300 |
commit | c75398b10a23fe19408026b455b20a1961af3917 (patch) | |
tree | c7d2418c56873f5da5d2612a9643e7c62f706577 /nixos/modules | |
parent | 1e593070cdd8953f2c4f661535684d7aa8783441 (diff) | |
download | nixlib-c75398b10a23fe19408026b455b20a1961af3917.tar nixlib-c75398b10a23fe19408026b455b20a1961af3917.tar.gz nixlib-c75398b10a23fe19408026b455b20a1961af3917.tar.bz2 nixlib-c75398b10a23fe19408026b455b20a1961af3917.tar.lz nixlib-c75398b10a23fe19408026b455b20a1961af3917.tar.xz nixlib-c75398b10a23fe19408026b455b20a1961af3917.tar.zst nixlib-c75398b10a23fe19408026b455b20a1961af3917.zip |
nixos/fail2ban: disable work fail2ban without firewall
Diffstat (limited to 'nixos/modules')
-rw-r--r-- | nixos/modules/services/security/fail2ban.nix | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/nixos/modules/services/security/fail2ban.nix b/nixos/modules/services/security/fail2ban.nix index cb748c93d24e..976b01fd10ee 100644 --- a/nixos/modules/services/security/fail2ban.nix +++ b/nixos/modules/services/security/fail2ban.nix @@ -216,6 +216,10 @@ in config = mkIf cfg.enable { + warnings = mkIf (config.networking.firewall.enable == false || config.networking.nftables.enable == false) [ + "fail2ban can not be used without a firewall" + ]; + environment.systemPackages = [ cfg.package ]; environment.etc = { |