From 015325eb5f6b1b79800f9698253df614ea14de4e Mon Sep 17 00:00:00 2001 From: Thiago Kenji Okada Date: Tue, 26 Sep 2023 12:50:18 +0100 Subject: [PATCH] nixos/system/default: use nftables by default --- nixos/system/default.nix | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/nixos/system/default.nix b/nixos/system/default.nix index 2d01005d..beee1327 100644 --- a/nixos/system/default.nix +++ b/nixos/system/default.nix @@ -41,7 +41,10 @@ in }; # Enable firmware-linux-nonfree - hardware.enableRedistributableFirmware = true; + hardware.enableRedistributableFirmware = lib.mkDefault true; + + # Enable nftables-based firewall + networking.nftables.enable = lib.mkDefault true; # Increase file handler limit security.pam.loginLimits = [{