From 9e1685531c2cf4d2b6c56e56f8966e69ced8b9f2 Mon Sep 17 00:00:00 2001
From: Franziska Kunsmann <hi@kunsmann.eu>
Date: Mon, 15 Mar 2021 11:48:35 +0100
Subject: [PATCH] nodes/home.router: add iptables rule for mail

---
 nodes/home/router.py | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/nodes/home/router.py b/nodes/home/router.py
index f8cad90..7d2fd03 100644
--- a/nodes/home/router.py
+++ b/nodes/home/router.py
@@ -91,6 +91,9 @@ nodes['home.router'] = {
                 'iptables -t nat -A PREROUTING -p tcp --dport 2022 -j DNAT --to 172.19.138.20:22',
                 'iptables -A FORWARD -p tcp -d 172.19.138.20 --dport 22 -j ACCEPT',
 
+                # Allow mail from internal network
+                'iptables_both -A INPUT -s 172.19.138.0/24 -p tcp --dport 25 -j ACCEPT',
+
                 # use MASQUERADE for tun0 (c3voc)
                 'iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE',