| options/nixos/services.firewalld.settings.LogDenied | Add logging rules right before reject and drop rules in the INPUT, FORWARD and OUTPUT chains for the default rules and also final reject and drop rules in zones for the configured link-layer packet type.
|
| options/nixos/services.firewalld.settings.FlushAllOnReload | Whether to flush all runtime rules on a reload.
|
| options/nixos/services.firewalld.settings.CleanupOnExit | Whether to clean up firewall rules when firewalld stops.
|
| options/nixos/services.firewalld.settings.NftablesTableOwner | If enabled, the generated nftables rule set will be owned exclusively by firewalld
|
| options/nixos/services.firewalld.settings.FirewallBackend | The firewall backend implementation
|
| options/nixos/services.firewalld.settings.StrictForwardPorts | If enabled, the generated destination NAT (DNAT) rules will NOT accept traffic that was DNAT'd by other entities, e.g. docker
|