From 6b832e17698652365a46a20bfbb0efc930b5ed27 Mon Sep 17 00:00:00 2001
From: pegasust <pegasucksgg@gmail.com>
Date: Fri, 25 Nov 2022 20:43:31 -0700
Subject: [PATCH] sys-nix even stricter networking disable

---
 system-nix/configuration.nix | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/system-nix/configuration.nix b/system-nix/configuration.nix
index c6a0f8b..e11338d 100755
--- a/system-nix/configuration.nix
+++ b/system-nix/configuration.nix
@@ -90,7 +90,7 @@ with lib;
   # Don't touch networking.firewall.enable, just configure everything else.
   # inherit networking;
   networking = networking // {
-    firewall = {
+    firewall = (networking.firewall.enable and {
       trustedInterfaces = networking.firewall.trustedInterfaces or [ ] ++ [
         "tailscale0"
       ];
@@ -105,7 +105,7 @@ with lib;
 
       ];
       checkReversePath = "loose";
-    };
+    }) or {};
   };
 
 }