kunsi-p14s: always have voc ip set up, enable forwarding and nat through wireless interface
This commit is contained in:
parent
ebc59f2843
commit
7a9401cd6c
GPG key ID:
12E3D2136B818350
1 changed files with 21 additions and 2 deletions
|
|
@ -39,8 +39,8 @@ nodes['kunsi-p14s'] = {
|
||||||
},
|
},
|
||||||
'interfaces': {
|
'interfaces': {
|
||||||
'br0': {
|
'br0': {
|
||||||
#'ips': {'10.73.100.103/16'},
|
'ips': {'10.73.100.103/16'},
|
||||||
#'gateway4': '10.73.0.254',
|
'gateway4': '10.73.0.254',
|
||||||
'dhcp': True,
|
'dhcp': True,
|
||||||
},
|
},
|
||||||
# there is also wlp3s0, but that's managed by netctl
|
# there is also wlp3s0, but that's managed by netctl
|
||||||
|
|
@ -65,6 +65,19 @@ nodes['kunsi-p14s'] = {
|
||||||
},
|
},
|
||||||
},
|
},
|
||||||
},
|
},
|
||||||
|
'nftables': {
|
||||||
|
'forward': {
|
||||||
|
'50-routing': {
|
||||||
|
'ct state { related, established } accept',
|
||||||
|
'oifname wlp2s0 accept',
|
||||||
|
},
|
||||||
|
},
|
||||||
|
'postrouting': {
|
||||||
|
'50-routing': {
|
||||||
|
'oifname wlp2s0 masquerade',
|
||||||
|
},
|
||||||
|
},
|
||||||
|
},
|
||||||
'openssh': {
|
'openssh': {
|
||||||
'restrict-to': {
|
'restrict-to': {
|
||||||
'rfc1918',
|
'rfc1918',
|
||||||
|
|
@ -139,6 +152,12 @@ nodes['kunsi-p14s'] = {
|
||||||
},
|
},
|
||||||
},
|
},
|
||||||
},
|
},
|
||||||
|
'sysctl': {
|
||||||
|
'options': {
|
||||||
|
'net.ipv4.ip_forward': '1',
|
||||||
|
'net.ipv6.conf.all.forwarding': '1',
|
||||||
|
},
|
||||||
|
},
|
||||||
'systemd-networkd': {
|
'systemd-networkd': {
|
||||||
'bridges': {
|
'bridges': {
|
||||||
'br0': {
|
'br0': {
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue