From d3aaefc995e335cda9622e91d1843803dda3b4e4 Mon Sep 17 00:00:00 2001
From: Gabriel Arazas <foodogsquared@foodogsquared.one>
Date: Sat, 28 Dec 2024 14:51:46 +0800
Subject: [PATCH] nixos/suites/server: explicitly open firewall for SSH server

---
 modules/nixos/_private/suites/server.nix | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/modules/nixos/_private/suites/server.nix b/modules/nixos/_private/suites/server.nix
index 37fcd569..8f3f91fd 100644
--- a/modules/nixos/_private/suites/server.nix
+++ b/modules/nixos/_private/suites/server.nix
@@ -39,6 +39,8 @@ in
       services.openssh = {
         enable = lib.mkDefault true;
 
+        openFirewall = true;
+
         settings = {
           # Making it verbose for services such as fail2ban.
           LogLevel = "VERBOSE";