summary refs log tree commit diff
path: root/nixos/modules/services/networking/xrdp.nix
diff options
context:
space:
mode:
Diffstat (limited to 'nixos/modules/services/networking/xrdp.nix')
-rw-r--r--nixos/modules/services/networking/xrdp.nix8
1 files changed, 8 insertions, 0 deletions
diff --git a/nixos/modules/services/networking/xrdp.nix b/nixos/modules/services/networking/xrdp.nix
index b7dd1c5d99d..9be7c3233e2 100644
--- a/nixos/modules/services/networking/xrdp.nix
+++ b/nixos/modules/services/networking/xrdp.nix
@@ -61,6 +61,12 @@ in
         '';
       };
 
+      openFirewall = mkOption {
+        default = false;
+        type = types.bool;
+        description = "Whether to open the firewall for the specified RDP port.";
+      };
+
       sslKey = mkOption {
         type = types.str;
         default = "/etc/xrdp/key.pem";
@@ -99,6 +105,8 @@ in
 
   config = mkIf cfg.enable {
 
+    networking.firewall.allowedTCPPorts = mkIf cfg.openFirewall [ cfg.port ];
+
     # xrdp can run X11 program even if "services.xserver.enable = false"
     xdg = {
       autostart.enable = true;
generated by cgit-pink 1.4.1 (git 2.36.1) at 2024-04-19 17:50:53 +0000