{
  pkgs,
  lib,
  ...
}:
{
  imports = [ ];

  networking.nftables.enable = true;

  # configure jool
  networking.jool = {
    enable = true;
    nat64.default = {
      pool4 = [
        {
          protocol = "TCP";
          prefix = "94.45.248.0/24";
          "port range" = "40001-65535";
        }
        {
          protocol = "UDP";
          prefix = "94.45.248.0/24";
          "port range" = "40001-65535";
        }
        {
          protocol = "ICMP";
          prefix = "94.45.248.0/24";
          "port range" = "40001-65535";
        }
      ];
    };
  };

  # DO NOT CHANGE
  # this defines the first version of NixOS that was installed on the machine so that programs with non-migratable data files are kept compatible
  home-manager.users.noc.home.stateVersion = "24.11";
  system.stateVersion = "24.11";
}