christoph/flake-nixinator
1
Fork 0
Code Activity

System/Thinknix: Update postup/postdown iptables rules for vps-wg-client

Browse Source
This commit is contained in:
Christoph Urlacher
2025-07-10 23:54:01 +02:00
parent 0a9660a52d
commit d7857b5dee
1 changed files with 8 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
system/thinknix/default.nix
View File

@ -70,14 +70,14 @@
# ${pkgs.iproute2}/bin/ip netns add ${name}
# '';
# postSetup = ''
# ${pkgs.iptables} -A FORWARD -i wg0-client -j ACCEPT
# ${pkgs.iptables} -t nat -A POSTROUTING -o eth0 -j MASQUERADE
# '';
# postShutdown = ''
# ${pkgs.iptables} -D FORWARD -i wg0-client -j ACCEPT
# ${pkgs.iptables} -t nat -D POSTROUTING -o eth0 -j MASQUERADE
# '';
postSetup = ''
${pkgs.iptables}/bin/iptables -A FORWARD -i vps-wg-client -j ACCEPT
${pkgs.iptables}/bin/iptables -t nat -A POSTROUTING -o ens18 -j MASQUERADE
'';
postShutdown = ''
${pkgs.iptables}/bin/iptables -D FORWARD -i vps-wg-client -j ACCEPT
${pkgs.iptables}/bin/iptables -t nat -D POSTROUTING -o ens18 -j MASQUERADE
'';
peers = [
{