rearranged firewall config

configuration.org

@@ -38,16 +38,6 @@ other functions.
 #+begin_src nix
 { config, pkgs, ... }:
 let
-  open_firewall_ports = [
-    80 # http
-    443 # https
-    6969 # HentaiAtHome
-    25152 # ssh
-    49494 # gerbera
-  ];
-  open_firewall_port_ranges = [
-    { from = 1714;  to = 1764; } # kdeconnect
-  ];
   VERSION = "23.05";
   #   "https://github.com/nix-community/home-manager/archive/master.tar.gz";
   unstable_tarball = builtins.fetchTarball
@@ -1043,10 +1033,29 @@ Open ports in the firewall.
 =TIP= list what app a port belongs to in a table.
 
 #+begin_src nix
-networking.firewall.allowedTCPPorts = open_firewall_ports;
-networking.firewall.allowedUDPPorts = open_firewall_ports;
-networking.firewall.allowedTCPPortRanges = open_firewall_port_ranges;
-networking.firewall.allowedUDPPortRanges = open_firewall_port_ranges;
+networking = {
+  # useDHCP = false;
+  # interfaces.enp0s31f6.useDHCP = true;
+  firewall = let
+    open_firewall_ports = [
+      80 # http
+      443 # https
+      6969 # HentaiAtHome
+      25152 # ssh
+      49494 # gerbera
+      8086 8920 # jellyfin
+    ];
+    open_firewall_port_ranges = [
+      { from = 1714;  to = 1764; } # kdeconnect
+    ];
+    in
+    {
+    allowedTCPPorts = open_firewall_ports;
+    allowedUDPPorts = open_firewall_ports;
+    allowedTCPPortRanges = open_firewall_port_ranges;
+    allowedUDPPortRanges = open_firewall_port_ranges;
+  };
+};
 # networking.firewall.enable = false;
 #+end_src