services.crowdsec-firewall-bouncer.registerBouncer.enable ‐ NixOS ‐ Searchix

Search Nix packages and options from NixOS, Darwin, Home Manager, Nix Packages and NUR

Indexing last ran 10 hours ago, will run again in 14 hours.

NixOS options search

Title	Description
services.crowdsec-firewall-bouncer.registerBouncer.enable	Whether to automatically register the bouncer to the locally running `crowdsec` service
services.crowdsec-firewall-bouncer.secrets.apiKeyPath	Path to the API key to authenticate with a local CrowdSec API
services.crowdsec-firewall-bouncer.settings.api_key	API key to authenticate with a local crowdsec API
services.crowdsec.openFirewall	Whether to automatically open firewall ports for `crowdsec`.
services.crowdsec-firewall-bouncer.registerBouncer.bouncerName	Name to register the bouncer as to the CrowdSec API
services.crowdsec-firewall-bouncer.enable	Whether to enable CrowdSec Firewall Bouncer.
services.crowdsec.enable	Whether to enable CrowdSec Security Engine.
services.crowdsec.user	The user to run crowdsec as
services.crowdsec.hub	Hub collections, parsers, AppSec rules, etc.
services.crowdsec.name	Name of the machine when registering it at the central or local api.
services.crowdsec-firewall-bouncer.package	The crowdsec-firewall-bouncer package to use.
services.crowdsec.group	The group to run crowdsec as
services.crowdsec-firewall-bouncer.settings	Settings for the main CrowdSec Firewall Bouncer
services.crowdsec-firewall-bouncer.settings.mode	Firewall mode to use.
services.crowdsec.package	The crowdsec package to use.
services.crowdsec-firewall-bouncer.createRulesets	Whether to have the module create the appropriate firewall configuration based on the bouncer settings
services.crowdsec.localConfig	The configuration for a crowdsec security engine.
services.crowdsec.settings	Set of various configuration attributes
services.crowdsec-firewall-bouncer.settings.api_url	URL of the local API.
nix.firewall.enable	Whether to enable firewalling for outgoing traffic of the nix daemon.
services.crowdsec.autoUpdateService	Whether to enable if `true` `cscli hub update` will be executed daily
networking.firewall.enable	Whether to enable the firewall
nix.firewall.allowNonTCPUDP	Whether to allow traffic that is neither TCP nor UDP
services.ferm.enable	Whether to enable Ferm Firewall. Warning: Enabling this service WILL disable the existing NixOS firewall! Default firewall rules provided by packages are not considered at the moment.
nix.firewall.allowedTCPPorts	TCP ports to which traffic is allowed
nix.firewall.allowedUDPPorts	UDP ports to which traffic is allowed
networking.firewall.pingLimit	If pings are allowed, this allows setting rate limits on them
networking.firewall.extraCommands	Additional shell commands executed as part of the firewall initialisation script
nix.firewall.allowLoopback	Whether to allow traffic on the loopback interface
networking.firewall.backend	Underlying implementation for the firewall service.
networking.firewall.package	The package to use for running the firewall service.
nix.firewall.extraNftablesRules	Extra nftables rules to prepend to the generated ones
services.nebula.networks.<name>.firewall.inbound	Firewall rules for inbound traffic.
services.nebula.networks.<name>.firewall.outbound	Firewall rules for outbound traffic.
networking.firewall.extraInputRules	Additional nftables rules to be appended to the input-allow chain
networking.firewall.extraStopCommands	Additional shell commands executed as part of the firewall shutdown script
networking.firewall.filterForward	Enable filtering in IP forwarding
networking.firewall.extraForwardRules	Additional nftables rules to be appended to the forward-allow chain
services.shorewall.enable	Whether to enable Shorewall IPv4 Firewall. Enabling this service WILL disable the existing NixOS firewall! Default firewall rules provided by packages are not considered at the moment.
services.prometheus.exporters.pgbouncer.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.pgbouncer.openFirewall` is true.
nix.firewall.allowPrivateNetworks	Whether to allow traffic to local networks
services.firewalld.enable	Whether to enable FirewallD.
networking.firewall.allowPing	Whether to respond to incoming ICMPv4 echo requests ("pings")
networking.firewall.allowedUDPPorts	List of open UDP ports.
services.prometheus.exporters.pgbouncer.firewallFilter	Specify a filter for iptables to use when `services.prometheus.exporters.pgbouncer.openFirewall` is true
services.technitium-dns-server.firewallUDPPorts	List of UDP ports to open in firewall.
networking.firewall.allowedTCPPorts	List of TCP ports on which incoming connections are accepted.
networking.firewall.extraReversePathFilterRules	Additional nftables rules to be appended to the rpfilter-allow chain
services.shorewall6.enable	Whether to enable Shorewall IPv6 Firewall. Enabling this service WILL disable the existing NixOS firewall! Default firewall rules provided by packages are not considered at the moment.
networking.firewall.extraPackages	Additional packages to be included in the environment of the system as well as the path of networking.firewall.extraCommands.
services.technitium-dns-server.firewallTCPPorts	List of TCP ports to open in firewall
networking.firewall.allowedUDPPortRanges	Range of open UDP ports.
networking.firewall.logReversePathDrops	Logs dropped packets failing the reverse path filter test if the option networking.firewall.checkReversePath is enabled.
networking.firewall.allowedTCPPortRanges	A range of TCP ports on which incoming connections are accepted.
networking.firewall.checkReversePath	Performs a reverse path filter test on a packet
networking.firewall.interfaces	Interface-specific open ports.
networking.firewall.rejectPackets	If set, refused packets are rejected rather than dropped (ignored)
networking.firewall.logRefusedPackets	Whether to log all rejected or dropped incoming packets
networking.firewall.logRefusedUnicastsOnly	If `networking.firewall.logRefusedPackets` and this option are enabled, then only log packets specifically directed at this machine, i.e., not broadcasts or multicasts.
services.firewalld.settings.CleanupOnExit	Whether to clean up firewall rules when firewalld stops.
networking.firewall.autoLoadConntrackHelpers	Whether to auto-load connection-tracking helpers
networking.firewall.trustedInterfaces	Traffic coming in from these interfaces will be accepted unconditionally
services.samba-wsdd.openFirewall	Whether to open the required firewall ports in the firewall.
services.firewalld.zones	firewalld zone configuration files
networking.firewall.interfaces.<name>.allowedUDPPorts	List of open UDP ports.
services.prometheus.exporters.nut.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.nut.openFirewall` is true.
services.prometheus.exporters.lnd.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.lnd.openFirewall` is true.
services.prometheus.exporters.sql.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.sql.openFirewall` is true.
services.prometheus.exporters.frr.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.frr.openFirewall` is true.
services.prometheus.exporters.pve.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.pve.openFirewall` is true.
services.prometheus.exporters.zfs.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.zfs.openFirewall` is true.
services.prometheus.exporters.kea.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.kea.openFirewall` is true.
networking.firewall.interfaces.<name>.allowedTCPPorts	List of TCP ports on which incoming connections are accepted.
services.prometheus.exporters.nats.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.nats.openFirewall` is true.
services.prometheus.exporters.bind.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.bind.openFirewall` is true.
services.prometheus.exporters.ping.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.ping.openFirewall` is true.
services.prometheus.exporters.flow.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.flow.openFirewall` is true.
services.prometheus.exporters.json.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.json.openFirewall` is true.
services.prometheus.exporters.ipmi.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.ipmi.openFirewall` is true.
services.prometheus.exporters.bird.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.bird.openFirewall` is true.
services.prometheus.exporters.mail.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.mail.openFirewall` is true.
services.prometheus.exporters.ebpf.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.ebpf.openFirewall` is true.
services.prometheus.exporters.knot.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.knot.openFirewall` is true.
services.prometheus.exporters.node.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.node.openFirewall` is true.
services.prometheus.exporters.snmp.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.snmp.openFirewall` is true.
services.prometheus.exporters.mqtt.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.mqtt.openFirewall` is true.
services.pgbouncer.openFirewall	Whether to automatically open the specified TCP port in the firewall.
services.prometheus.exporters.php-fpm.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.php-fpm.openFirewall` is true.
services.firewalld.extraArgs	Extra arguments to pass to FirewallD.
services.gnome.rygel.enable	Whether to enable Rygel UPnP Mediaserver
networking.firewall.logRefusedConnections	Whether to log rejected or dropped incoming connections
services.prometheus.exporters.nginx.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.nginx.openFirewall` is true.
services.prometheus.exporters.redis.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.redis.openFirewall` is true.
services.prometheus.exporters.kafka.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.kafka.openFirewall` is true.
services.prometheus.exporters.idrac.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.idrac.openFirewall` is true.
services.prometheus.exporters.v2ray.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.v2ray.openFirewall` is true.
services.prometheus.exporters.jitsi.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.jitsi.openFirewall` is true.
services.prometheus.exporters.fritz.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.fritz.openFirewall` is true.
services.prometheus.exporters.dmarc.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.dmarc.openFirewall` is true.
services.prometheus.exporters.node-cert.firewallRules	Specify rules for nftables to add to the input chain when `services.prometheus.exporters.node-cert.openFirewall` is true.