• feat(nix): configure gnome-remote-desktop firewall rules and systemd target

- Added systemd service configuration to enable gnome-remote-desktop on graphical.target - Conditionally enable firewall rules for RDP ports (3389) only when gnome-remote-desktop is enabled - Maintains consistent service configuration with existing xrdp and firewall setup patterns
2025-12-03 16:52:23 +01:00 · 2025-12-03 16:52:23 +01:00 · 6b2190a918
commit 6b2190a918
parent 04d40c5bbd
1 changed files with 9 additions and 2 deletions
--- a/modules/nixos/services/gui/default.nix
+++ b/modules/nixos/services/gui/default.nix
@ -216,7 +216,14 @@ in
    services.xrdp.openFirewall = true;

    services.gnome.gnome-remote-desktop.enable = lib.mkDefault true;
-    networking.firewall.allowedTCPPorts = [ 3389 ];
-    networking.firewall.allowedUDPPorts = [ 3389 ];
+
+    systemd.services."gnome-remote-desktop".wantedBy =
+      mkIf config.services.gnome.gnome-remote-desktop.enable
+        [ "graphical.target" ];
+
+    networking.firewall = mkIf config.services.gnome.gnome-remote-desktop.enable {
+      allowedTCPPorts = [ 3389 ];
+      allowedUDPPorts = [ 3389 ];
+    };
  };
 }