From 80abf0577c962e8d5a71e586f020953f939d90c6 Mon Sep 17 00:00:00 2001
From: Max Audron <audron@cocaine.farm>
Date: Wed, 30 Jul 2025 16:53:40 +0200
Subject: enable firewalls

---
 modules/games/acc.nix          | 3 +++
 modules/games/default.nix      | 6 ++++++
 modules/games/palworld.nix     | 1 +
 modules/games/satisfactory.nix | 3 +++
 4 files changed, 13 insertions(+)

(limited to 'modules/games')

diff --git a/modules/games/acc.nix b/modules/games/acc.nix
index c9a50eb..26a9781 100644
--- a/modules/games/acc.nix
+++ b/modules/games/acc.nix
@@ -18,4 +18,7 @@
       environment = { };
     };
   };
+
+  networking.firewall.allowedTCPPorts = [ 9232 ];
+  networking.firewall.allowedUDPPorts = [ 9231 ];
 }
diff --git a/modules/games/default.nix b/modules/games/default.nix
index bbbaba3..fee8e34 100644
--- a/modules/games/default.nix
+++ b/modules/games/default.nix
@@ -7,6 +7,7 @@
     enable = true;
     package = pkgs.master.factorio-headless;
 
+    openFirewall = true;
     public = false;
     nonBlockingSaving = true;
     loadLatestSave = true;
@@ -16,6 +17,7 @@
 
   services.xonotic = {
     enable = true;
+    openFirewall = true;
     settings = {
       net_address = "178.63.224.10";
       hostname = "cocaine.farm xonotic $g_xonoticversion";
@@ -27,6 +29,8 @@
     package = pkgs.unstable.papermc;
     eula = true;
 
+    openFirewall = true;
+
     declarative = true;
     whitelist = import ./minecraft_whitelist.nix;
     jvmOpts = "-Xmx6144M -Xms6144M";
@@ -67,4 +71,6 @@
       ];
     };
   };
+
+  networking.firewall.allowedTCPPorts = [ 25566 ];
 }
diff --git a/modules/games/palworld.nix b/modules/games/palworld.nix
index 844eb36..74974fa 100644
--- a/modules/games/palworld.nix
+++ b/modules/games/palworld.nix
@@ -1,6 +1,7 @@
 { config, lib, ... }:
 
 {
+  networking.firewall.allowedUDPPorts = [ 8211 ];
   virtualisation.oci-containers.containers = {
     palworld-server = {
       image = "docker.io/jammsen/palworld-dedicated-server:latest";
diff --git a/modules/games/satisfactory.nix b/modules/games/satisfactory.nix
index 6864256..b47e575 100644
--- a/modules/games/satisfactory.nix
+++ b/modules/games/satisfactory.nix
@@ -6,6 +6,9 @@
 }:
 
 {
+  networking.firewall.allowedTCPPorts = [ 7777 ];
+  networking.firewall.allowedUDPPorts = [ 7777 ];
+
   virtualisation.oci-containers.containers = {
     satisfactory = {
       image = "docker.io/wolveix/satisfactory-server:latest";
-- 
cgit v1.2.3