From 7e36e8160d2985ffb90f2198c755208cd598cd75 Mon Sep 17 00:00:00 2001
From: sinanmohd <sinan@sinanmohd.com>
Date: Wed, 23 Apr 2025 00:10:48 +0530
Subject: os/kay/firewall: refactor

---
 os/kay/modules/hurricane.nix | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

(limited to 'os/kay/modules/hurricane.nix')

diff --git a/os/kay/modules/hurricane.nix b/os/kay/modules/hurricane.nix
index 9aaf1d1..511b213 100644
--- a/os/kay/modules/hurricane.nix
+++ b/os/kay/modules/hurricane.nix
@@ -42,8 +42,12 @@ in
       rttablesExtraConfig = "200 hurricane";
     };
 
-    firewall.extraCommands =
+    firewall = {
+      extraCommands =
       "iptables -A INPUT --proto 41 --source ${remote} --jump ACCEPT";
+      extraStopCommands =
+      "iptables -D INPUT --proto 41 --source ${remote} --jump ACCEPT";
+    };
   };
 
   sops.secrets = {
-- 
cgit v1.2.3