From 0561eaf54d67e705e0cefeb909e136d1e06da302 Mon Sep 17 00:00:00 2001
From: Nico <nico@astolfo.org>
Date: Sat, 3 May 2025 16:16:04 +1000
Subject: [PATCH] openssh: fix opening firewall

---
 modules/services/ssh.nix | 5 +----
 1 file changed, 1 insertion(+), 4 deletions(-)

diff --git a/modules/services/ssh.nix b/modules/services/ssh.nix
index 2f31c3f..efa0485 100644
--- a/modules/services/ssh.nix
+++ b/modules/services/ssh.nix
@@ -5,7 +5,7 @@
   services.openssh = {
     enable = true;
     allowSFTP = true;
-    openFirewall = false;
+    openFirewall = true;
     authorizedKeysInHomedir = false;
     settings = {
       PermitRootLogin = "no";
@@ -19,9 +19,6 @@
     "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIHzUJnqCpbRxggjyIZo4KWnTyHobPdi/xXkN1/n/yIMD"
   ];
 
-  # enable ssh in the firewall
-  networking.firewall.allowedTCPPorts = [ 22 ];
-
   # enable fail2ban
   services.fail2ban.enable = true;
 }