From 7fa8e92f50bb5ffeff3a34ec94c6a56be0af0c88 Mon Sep 17 00:00:00 2001
From: Bitcoin Txoko <142011724+bitcointxoko@users.noreply.github.com>
Date: Tue, 23 Jul 2024 10:49:09 +0200
Subject: [PATCH] Create netns-isolation.nix

---
 system/helpers/netns-isolation.nix | 6 ++++++
 1 file changed, 6 insertions(+)
 create mode 100644 system/helpers/netns-isolation.nix

diff --git a/system/helpers/netns-isolation.nix b/system/helpers/netns-isolation.nix
new file mode 100644
index 0000000..ba77ac3
--- /dev/null
+++ b/system/helpers/netns-isolation.nix
@@ -0,0 +1,6 @@
+### netns-isolation (EXPERIMENTAL)
+# Enable this module to use Network Namespace Isolation. This feature places
+# every service in its own network namespace and only allows truly necessary
+# connections between network namespaces, making sure services are isolated on
+# a network-level as much as possible.
+{ nix-bitcoin.netns-isolation.enable = true; }