chore: format everything

2024-11-26 13:34:55 +01:00 · 2024-11-26 13:34:55 +01:00 · 7ccd7856ee
commit 7ccd7856ee
parent deca311c68
162 changed files with 4750 additions and 3718 deletions
--- a/config/nftables.nix
+++ b/config/nftables.nix
@ -2,7 +2,8 @@
  config,
  lib,
  ...
-}: {
+}:
+{
  networking.nftables = {
    stopRuleset = lib.mkDefault ''
      table inet filter {
@ -36,17 +37,31 @@
        nnf-ssh.enable = true;
        nnf-icmp = {
          enable = true;
-          ipv6Types = ["echo-request" "destination-unreachable" "packet-too-big" "time-exceeded" "parameter-problem" "nd-router-advert" "nd-neighbor-solicit" "nd-neighbor-advert"];
-          ipv4Types = ["echo-request" "destination-unreachable" "router-advertisement" "time-exceeded" "parameter-problem"];
+          ipv6Types = [
+            "echo-request"
+            "destination-unreachable"
+            "packet-too-big"
+            "time-exceeded"
+            "parameter-problem"
+            "nd-router-advert"
+            "nd-neighbor-solicit"
+            "nd-neighbor-advert"
+          ];
+          ipv4Types = [
+            "echo-request"
+            "destination-unreachable"
+            "router-advertisement"
+            "time-exceeded"
+            "parameter-problem"
+          ];
        };
      };

      rules.untrusted-to-local = {
-        from = ["untrusted"];
-        to = ["local"];
+        from = [ "untrusted" ];
+        to = [ "local" ];

-        inherit
-          (config.networking.firewall)
+        inherit (config.networking.firewall)
          allowedTCPPorts
          allowedTCPPortRanges
          allowedUDPPorts