services.opensnitch.rules
NixOS option
Declarative configuration of firewall rules. All rules will be stored in /var/lib/opensnitch/rules by default. Rules path can be configured with settings.Rules.Path. See upstream documentation for available options.
type: open submodule of (JSON value)Default
{ }Example
declared in: nixos/modules/services/security/opensnitch.nixView source on NixOS/nixpkgs →{
"tor" = {
"name" = "tor";
"enabled" = true;
"action" = "allow";
"duration" = "always";
"operator" = {
"type" ="simple";
"sensitive" = false;
"operand" = "process.path";
"data" = "${lib.getBin pkgs.tor}/bin/tor";
};
};
};