Fix TCP port firewall rules

Accidentally I threw the port numbers for some containers in the openssh
ports list, which opened them for SSH, but also for TCP which meant I
could reach the containers now and did not notice. Yikes.

Author: inverted-tree

hosts/itxserver/configuration.nix

@@ -70,7 +70,10 @@ in
       "100.100.100.100"
     ];
     firewall = {
-      allowedTCPPorts = [ ];
+      allowedTCPPorts = [
+        8888
+        8123
+      ];
       allowedUDPPorts = [ ];
     };
     search = [ "tabby-crocodile.ts.net" ];
@@ -103,11 +106,7 @@ in
     };
     openssh = {
       enable = true;
-      ports = [
-        22
-        8888
-	8123
-      ];
+      ports = [ 22 ];
       settings = {
         PasswordAuthentication = false;
         KbdInteractiveAuthentication = false;