hainich: block x_tables module

this also blocks the x_tables module to prent it from loading ip_tables
2021-03-26 10:40:10 +01:00 · 2021-03-26 10:40:10 +01:00 · 78e607a28d
parent 8a17da7761
commit 78e607a28d
1 changed files with 3 additions and 2 deletions
--- a/hosts/hainich/configuration.nix
+++ b/hosts/hainich/configuration.nix
@ -27,8 +27,9 @@
  boot.loader.grub.device = "/dev/sda";
  boot.supportedFilesystems = [ "zfs" ];

-  # stop presumably docker form loading ip_tables and breaking nftables
-  boot.blacklistedKernelModules = [ "ip_tables" "ip6_tables" ]; 
+  # stop *something* from loading ip_tables and breaking nftables
+  boot.blacklistedKernelModules = [ "ip_tables" "ip6_tables" "x_tables"]; 
+

  # networking
  networking.hostName = "hainich";