kunsi/bundlewrap
1
0
Fork 0
Code Issues 1 Pull requests 1 Releases Activity

home.router: allow forwarding for new vlan

Browse source
This commit is contained in:
Franzi 2024-02-25 20:55:53 +01:00
parent 9e59bb044a
commit b89ba32f4c
Signed by: kunsi
GPG key ID: 12E3D2136B818350
1 changed files with 2 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
nodes/home/router.py
View file

@ -86,6 +86,8 @@ nodes['home.router'] = {
'forward': { 'forward': {
'50-router': [ '50-router': [
'ct state { related, established } accept', 'ct state { related, established } accept',
'iifname enp1s0.1138 accept',
'iifname enp1s0.2000 accept',
'ip6 nexthdr ipv6-icmp accept', 'ip6 nexthdr ipv6-icmp accept',
'tcp dport 22 accept', 'tcp dport 22 accept',
], ],
@ -139,7 +141,6 @@ nodes['home.router'] = {
'password': vault.decrypt('encrypt$gAAAAABfr8Cq5M1hweeJTQAl0dLhFntdlw-QnkIYUQpY-_ycODVWOpyeAwjwOgWLSdsdXIUvqcoiXPZPV-BE12p5C42NGnj9r7sKYpoGz8xfuGIk6haMa2g='), 'password': vault.decrypt('encrypt$gAAAAABfr8Cq5M1hweeJTQAl0dLhFntdlw-QnkIYUQpY-_ycODVWOpyeAwjwOgWLSdsdXIUvqcoiXPZPV-BE12p5C42NGnj9r7sKYpoGz8xfuGIk6haMa2g='),
}, },
'nftables-rules.d': { 'nftables-rules.d': {
'inet filter forward iifname enp1s0.1138 accept',
'inet filter forward iifname enp1s0.1139 oifname $INTERFACE accept', 'inet filter forward iifname enp1s0.1139 oifname $INTERFACE accept',
}, },
}, },