kunsi/bundlewrap
1
0
Fork 0
Code Issues 1 Pull requests 1 Releases Activity

nodes/home.router: add iptables rule for mail
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details

Browse source
This commit is contained in:
Franzi 2021-03-15 11:48:35 +01:00
parent 3fcd81960e
commit 9e1685531c
Signed by: kunsi
GPG key ID: 12E3D2136B818350
1 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
nodes/home/router.py
View file

@ -91,6 +91,9 @@ nodes['home.router'] = {
'iptables -t nat -A PREROUTING -p tcp --dport 2022 -j DNAT --to 172.19.138.20:22', 'iptables -t nat -A PREROUTING -p tcp --dport 2022 -j DNAT --to 172.19.138.20:22',
'iptables -A FORWARD -p tcp -d 172.19.138.20 --dport 22 -j ACCEPT', 'iptables -A FORWARD -p tcp -d 172.19.138.20 --dport 22 -j ACCEPT',
# Allow mail from internal network
'iptables_both -A INPUT -s 172.19.138.0/24 -p tcp --dport 25 -j ACCEPT',
# use MASQUERADE for tun0 (c3voc) # use MASQUERADE for tun0 (c3voc)
'iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE', 'iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE',