MyNixOS website logo
option

networking.firewall.extraCommands

Additional shell commands executed as part of the firewall initialisation script. These are executed just before the final "reject" firewall rule is added, so they can be used to allow packets that would otherwise be refused.

This option only works with the iptables based firewall.

Declarations
Type
strings concatenated with "\n"
Default
""
Example
"iptables -A INPUT -p icmp -j ACCEPT"