From 054834d842a0ea082450d66c8ee8e71771567e47 Mon Sep 17 00:00:00 2001
From: Infinidoge <infinidoge@inx.moe>
Date: Wed, 14 Feb 2024 10:19:20 -0500
Subject: [PATCH] global/networking: use nftables

---
 modules/global/networking.nix | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/modules/global/networking.nix b/modules/global/networking.nix
index ac40627..4652b6e 100644
--- a/modules/global/networking.nix
+++ b/modules/global/networking.nix
@@ -25,6 +25,10 @@
       "2696:4700:4700::1111"
       "2696:4700:4700::1111"
     ];
+
+    nftables = {
+      enable = true;
+    };
   };
 
   services = {
@@ -36,4 +40,8 @@
 
     zerotierone.enable = false;
   };
+
+  systemd.services.tailscaled.serviceConfig.Environment = [
+    "TS_DEBUG_FIREWALL_MODE=nftables"
+  ];
 }