The service seems to start, although searching for the process in bottom doesn’t return anything. And when I try to start the GUI or use firewall-cmd, it returns errors about modules within the firewalld nix store file not being found. Can anyone help?
I use networking.firewall at the moment. I’m also aware of nixos-firewall-tool. The reason i want firewalld is because my computer is a laptop and i take it places. There are some instances where i want certain ports such as ssh open and others where I don’t, and firewalld has zoning which makes that really easy.
I’m getting the feeling that my issue with actually using firewalld is a nixpkgs issue since it persists even without the systemd service block i wrote, but i want to at least be able to enable the daemon.
Sadly, the PR for firewalld module support in nixpkgs is closed, and i don’t see anyone making a new PR or even acknowledging the existence of it, so i have to do this manually. I’m hoping this is a temporary solution and that module support for firewalld will eventually exist.
$ firewall-applet
Traceback (most recent call last):
File "/nix/store/x5v3iyvkdyycwzanljf8rlfj5mqrvba9-firewalld-2.1.2/bin/.firewall-applet-wrapped", line 12, in <module>
from PyQt6 import QtGui, QtCore, QtWidgets
ModuleNotFoundError: No module named 'PyQt6'
During handling of the above exception, another exception occurred:
Traceback (most recent call last):
File "/nix/store/x5v3iyvkdyycwzanljf8rlfj5mqrvba9-firewalld-2.1.2/bin/.firewall-applet-wrapped", line 16, in <module>
from PyQt5 import QtGui, QtCore, QtWidget
$ firewall-cmd
Traceback (most recent call last):
File "/nix/store/x5v3iyvkdyycwzanljf8rlfj5mqrvba9-firewalld-2.1.2/bin/.firewall-cmd-wrapped", line 11, in <module>
from gi.repository import GObject
File "/nix/store/hjs18la751vs55m2cdx5wi0rv06qavpa-python3-3.12.4-env/lib/python3.12/site-packages/gi/importer.py", line 133, in create_module
raise ImportError('cannot import name %s, '
ImportError: cannot import name GObject, introspection typelib not found
I’ll try without the overlay first, then with the overlay. I’m planning to restructure my nix config at some point soon so I’ll let you know how stuff goes.