added ports module from m3ta-nixpkgs / prep for rewrite

2025-10-05 12:24:27 +02:00
parent 6cd1fdd651
commit dea4ca9377
18 changed files with 111 additions and 169 deletions
--- a/hosts/m3-atlas/services/postgres.nix
+++ b/hosts/m3-atlas/services/postgres.nix
@@ -1,4 +1,8 @@
-{pkgs, ...}: {
+{
+  pkgs,
+  config,
+  ...
+}: {
  services.postgresql = {
    enable = true;
    enableTCPIP = true;
@@ -36,8 +40,8 @@
  };
  networking.firewall = {
    extraCommands = ''
-      iptables -A INPUT -p tcp -s 127.0.0.1 --dport 5432 -j ACCEPT
-      iptables -A INPUT -p tcp -s 10.89.0.0/24 --dport 5432 -j ACCEPT
+      iptables -A INPUT -p tcp -s 127.0.0.1 --dport ${toString (config.m3ta.ports.get "postgres")} -j ACCEPT
+      iptables -A INPUT -p tcp -s 10.89.0.0/24 --dport ${toString (config.m3ta.ports.get "postgres")} -j ACCEPT
    '';
  };
 }