From dd2654a5d0f7a44a5fdac2f422dc7e0971310f03 Mon Sep 17 00:00:00 2001
From: Adithya Nair <adtya@adtya.xyz>
Date: Sat, 23 Nov 2024 00:25:40 +0530
Subject: [PATCH] bifrost: keep ssh port open for now

---
 hosts/bifrost/services/ssh.nix | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/hosts/bifrost/services/ssh.nix b/hosts/bifrost/services/ssh.nix
index 2d103eb..c91a7fb 100644
--- a/hosts/bifrost/services/ssh.nix
+++ b/hosts/bifrost/services/ssh.nix
@@ -1,12 +1,16 @@
 { config, ... }:
 let facts = config.nodeconfig.facts; in {
-  networking.firewall.interfaces.ens3.allowedTCPPorts = [ 22 ];
+  networking.firewall.interfaces = {
+    ens3.allowedTCPPorts = [ 2222 ];
+    ens4.allowedTCPPorts = [ 22 ];
+  };
   services.openssh = {
     enable = true;
     openFirewall = false;
     listenAddresses = [
-      { addr = facts.wireguard-ip; port = 22; }
+      { addr = facts.external-ip; port = 2222; }
       { addr = facts.local-ip; port = 22; }
+      { addr = facts.wireguard-ip; port = 22; }
     ];
     settings = {
       KbdInteractiveAuthentication = false;