From 4056ce5dfdcbf932f1e9d2c9d6393fa91c9c4f2d Mon Sep 17 00:00:00 2001
From: Jakob Lechner <mail@jalr.de>
Date: Wed, 23 Jul 2025 01:12:30 +0200
Subject: [PATCH] Open sip/rtp ports in firewall

---
 hosts/pbx/services/fieldpoc/default.nix | 13 +++----------
 1 file changed, 3 insertions(+), 10 deletions(-)

diff --git a/hosts/pbx/services/fieldpoc/default.nix b/hosts/pbx/services/fieldpoc/default.nix
index 469e3eb..949f1bd 100644
--- a/hosts/pbx/services/fieldpoc/default.nix
+++ b/hosts/pbx/services/fieldpoc/default.nix
@@ -14,22 +14,15 @@ in {
     owner = "fieldpoc";
   };
 
-  networking.firewall.interfaces.voice = {
-    allowedUDPPorts = [53 5060];
-    allowedUDPPortRanges = [
-      {
-        inherit (rtpPorts) from;
-        inherit (rtpPorts) to;
-      }
-    ];
-  };
-  networking.firewall.interfaces.jugendtreff = {
+  networking.firewall = {
+    allowedUDPPorts = [5060];
     allowedUDPPortRanges = [
       {
         inherit (rtpPorts) from;
         inherit (rtpPorts) to;
       }
     ];
+    interfaces.voice.allowedUDPPorts = [53];
   };
 
   environment.persistence."/persist".directories = [