blob: 6b82eca0f9e0e00f6c384556644b3337fb40b021 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
|
{ config, lib, ... }:
with lib;
{
options = {
system.defaults.alf.globalstate = mkOption {
type = types.nullOr types.int;
default = null;
description = lib.mdDoc ''
Apple menu > System Preferences > Security and Privacy > Firewall
Enable the internal firewall to prevent unauthorised applications, programs
and services from accepting incoming connections.
0 = disabled
1 = enabled
2 = blocks all connections except for essential services
'';
};
system.defaults.alf.allowsignedenabled = mkOption {
type = types.nullOr types.int;
default = null;
description = lib.mdDoc ''
Apple menu > System Preferences > Security and Privacy > Firewall
Allows any signed Application to accept incoming requests. Default is true.
0 = disabled
1 = enabled
'';
};
system.defaults.alf.allowdownloadsignedenabled = mkOption {
type = types.nullOr types.int;
default = null;
description = lib.mdDoc ''
Apple menu > System Preferences > Security and Privacy > Firewall
Allows any downloaded Application that has been signed to accept incoming requests. Default is 0.
0 = disabled
1 = enabled
'';
};
system.defaults.alf.loggingenabled = mkOption {
type = types.nullOr types.int;
default = null;
description = lib.mdDoc ''
Apple menu > System Preferences > Security and Privacy > Firewall
Enable logging of requests made to the firewall. Default is 0.
0 = disabled
1 = enabled
'';
};
system.defaults.alf.stealthenabled = mkOption {
type = types.nullOr types.int;
default = null;
description = lib.mdDoc ''
Apple menu > System Preferences > Security and firewall
Drops incoming requests via ICMP such as ping requests. Default is 0.
0 = disabled
1 = enabled
'';
};
};
}
|
