You can disable the NixOS firewall, install firewalld (or any other firewall solution) and use that if you want.
this post was submitted on 01 Nov 2023
9 points (84.6% liked)
Nix / NixOS
2310 readers
1 users here now
Main links
Videos
founded 2 years ago
MODERATORS
The nixos firewall can in fact be configured per interface. https://search.nixos.org/options?channel=23.05&show=networking.firewall.interfaces.%3Cname%3E.allowedTCPPorts&from=0&size=50&sort=relevance&type=packages&query=Networking.Firewall.Interfaces
Well if that link doesn’t work, networking.firewall.interfaces..allowedTCPPorts
It can be configured per interface, but not per access point
This does actually help as I can just open ports over tailscale and exclusively use that for connections though the ideal is to be able to open ports only when connected to home WiFi
You want firewalld. Not declarative (probably?), but the only option that can dynamically change firewall rules based on the network you are connected to.
Look into firewalld zones.
opnsense and pfsense, though they run on freeBSD
Also OpenWRT if you want to stay on Linux, but OpenWRT is a nightmare for updating