From bf299b19b8bac17a9988ad60cb078d8b3d759cc5 Mon Sep 17 00:00:00 2001
From: Inex Code <inex.code@selfprivacy.org>
Date: Thu, 26 Dec 2024 18:19:21 +0300
Subject: [PATCH] fix: Remove lib.mkForce from allowed ports as it prevents SP
 modules from opening required ports

---
 configuration.nix | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/configuration.nix b/configuration.nix
index a3df9a0..6aa93c8 100644
--- a/configuration.nix
+++ b/configuration.nix
@@ -83,8 +83,8 @@ in
     domain = config.selfprivacy.domain;
     usePredictableInterfaceNames = false;
     firewall = {
-      allowedTCPPorts = lib.mkForce [ 22 25 80 143 443 465 587 993 4443 8443 ];
-      allowedUDPPorts = lib.mkForce [ 8443 10000 ];
+      allowedTCPPorts = [ 22 25 80 143 443 465 587 993 4443 8443 ];
+      allowedUDPPorts = [ 8443 10000 ];
       extraCommands = ''
         iptables --table nat --append POSTROUTING --out-interface eth0 -j MASQUERADE
         iptables --append FORWARD --in-interface vpn00 -j ACCEPT