kunsi/bundlewrap
1
0
Fork 0
Code Issues 1 Pull requests 1 Releases Activity

home.router: add c3voc vpn

Browse source
This commit is contained in:
Franzi 2020-12-08 17:45:30 +01:00
parent 8a1a1bd8fd
commit b80c0b12fe
Signed by: kunsi
GPG key ID: 12E3D2136B818350
2 changed files with 10 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
bundles/openvpn-client/items.py
View file

@ -17,5 +17,6 @@ for config in node.metadata.get('openvpn-client', {}).get('configs', set()):
svc_systemd[f'openvpn-client@{config}'] = {
'needs': {
f'file:/etc/openvpn/client/{config}.conf',
'pkg_apt:openvpn',
},
}

9
nodes/home/router.py
View file

@ -7,6 +7,7 @@ nodes['home.router'] = {
'iptables',
'netdata',
'nginx',
'openvpn-client',
'pppd',
'radvd',
'vnstat',
@ -71,6 +72,9 @@ nodes['home.router'] = {
# External port 2022 should be home.nas
'iptables -t nat -A PREROUTING -p tcp --dport 2022 -j DNAT --to 172.19.138.20:22',
'iptables -A FORWARD -p tcp -d 172.19.138.20 --dport 22 -j ACCEPT',
# use MASQUERADE for tun0 (c3voc)
'iptables -t nat -A POSTROUTING -o tun0 -j MASQUERADE',
],
},
'nameservers': atomic({
@ -87,6 +91,11 @@ nodes['home.router'] = {
'enp1s0.42',
},
},
'openvpn-client': {
'configs': {
'c3voc',
},
},
'radvd': {
'integrate-with-pppd': True,
'interfaces': {