From f8966f062f6cf4f201c23f8ffbba681f0a14ce87 Mon Sep 17 00:00:00 2001
From: Leyla Becker <git@jan-leila.com>
Date: Wed, 26 Feb 2025 10:42:53 -0600
Subject: [PATCH] made nfs only open firewall on tailscale interface

---
 modules/nixos-modules/server/network_storage/nfs.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/modules/nixos-modules/server/network_storage/nfs.nix b/modules/nixos-modules/server/network_storage/nfs.nix
index 92b6591..e793b16 100644
--- a/modules/nixos-modules/server/network_storage/nfs.nix
+++ b/modules/nixos-modules/server/network_storage/nfs.nix
@@ -49,7 +49,7 @@
             )
           );
         };
-        networking.firewall.allowedTCPPorts = [
+        networking.firewall.interfaces.${config.services.tailscale.interfaceName}.allowedTCPPorts = [
           config.host.network_storage.nfs.port
         ];
       }