Create opensnitch nixos module

[davidak]

Issue description

A package for opensnitch was added in https://github.com/NixOS/nixpkgs/pull/117893, but it is not easy to use.

There is a How To from @onny: https://blog.project-insanity.org/2021/04/01/setup-opensnitch-on-nixos/

It would be great to have a nixos module to set it up.

cc @raboof

[raboof]

This would indeed be great! There's even some existing work in #76897, but I didn't want to just blindly copy that approach without first understanding whether that is (still) the way that makes most sense ;) )

[stale[bot]]

I marked this as stale due to inactivity. → More info

[chuahou]

This was done in #132319, so I'm closing this. Please reopen if there's a need to, thanks.

Edit: note for people finding this by Googling or what not, the existing module needs the version of pkgs.opensnitch that has the systemd unit file, which as of time of writing is only in nixpkgs-unstable and not nixos-21.05.