From f9d4f9ad5fc137f64063230be58a5fc248bf7870 Mon Sep 17 00:00:00 2001
From: Dominik Polakovics <dominik.polakovics@cloonar.com>
Date: Sat, 2 Dec 2023 11:11:39 +0100
Subject: [PATCH] allow infrastructure to podman

---
 hosts/fw.cloonar.com/modules/firewall.nix | 1 +
 1 file changed, 1 insertion(+)

diff --git a/hosts/fw.cloonar.com/modules/firewall.nix b/hosts/fw.cloonar.com/modules/firewall.nix
index 35d7572..b85495d 100644
--- a/hosts/fw.cloonar.com/modules/firewall.nix
+++ b/hosts/fw.cloonar.com/modules/firewall.nix
@@ -110,6 +110,7 @@
             # lan and vpn to any
             # TODO: disable wan when finished
             iifname { "wan", "lan", "podman0", "wg_cloonar" } oifname { "lan", "podman0", "infrastructure", "multimedia", "smart", "wrwks", "wg_cloonar", "wg_epicenter", "wg_ghetto_at" } counter accept
+            iifname { "ifrastructure" } oifname { "podman0" } counter accept
 
             # Allow trusted network WAN access
             iifname {