nodes/home.router: refine forwarding rules for enp1s0.23
All checks were successful
bundlewrap/pipeline/head This commit looks good
All checks were successful
bundlewrap/pipeline/head This commit looks good
This commit is contained in:
parent
1a9fadce70
commit
ed325848ab
GPG key ID:
12E3D2136B818350
|
|
@ -64,10 +64,9 @@ nodes['home.router'] = {
|
|||
},
|
||||
'iptables': {
|
||||
'custom_rules': [
|
||||
# This is a router. Allow forwarding traffic for all internal networks.
|
||||
# This is a router. Allow forwarding traffic for internal networks.
|
||||
'iptables_both -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT',
|
||||
'iptables_both -A FORWARD -i enp1s0.23 -o enp1s0.42 -j REJECT',
|
||||
'iptables_both -A FORWARD -i enp1s0.23 -j ACCEPT',
|
||||
'iptables_both -A FORWARD -i enp1s0.23 -o ppp0 -j ACCEPT',
|
||||
'iptables_both -A FORWARD -i enp1s0.42 -j ACCEPT',
|
||||
|
||||
# External port 2022 should be home.nas
|
||||
|
|
|
|||
Loading…
Reference in a new issue