From 472f4b0334e5f914d731830f9541287b88b1c10d Mon Sep 17 00:00:00 2001
From: Rodrigo Arias Mallo <rodrigo.arias@bsc.es>
Date: Wed, 4 Oct 2023 08:19:09 +0200
Subject: [PATCH] Don't log SLURM connection attempts from ssfhead

---
 m/common/net.nix | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/m/common/net.nix b/m/common/net.nix
index d90f8ba4..1c9c5690 100644
--- a/m/common/net.nix
+++ b/m/common/net.nix
@@ -23,7 +23,7 @@
       allowedTCPPorts = [ 22 ];
       extraCommands = ''
         # Prevent ssfhead from contacting our slurmd daemon
-        iptables -A nixos-fw -p tcp -s ssfhead --dport 6817:6819 -j nixos-fw-log-refuse
+        iptables -A nixos-fw -p tcp -s ssfhead --dport 6817:6819 -j nixos-fw-refuse
         # But accept traffic to slurm ports from any other node in the subnet
         iptables -A nixos-fw -p tcp -s 10.0.40.0/24 --dport 6817:6819 -j nixos-fw-accept
         # We also need to open the srun port range