kunsi/bundlewrap
1
0
Fork 0
Code Issues 1 Pull requests 1 Releases Activity

nodes/home.router: refine forwarding rules for enp1s0.23
All checks were successful
bundlewrap/pipeline/head This commit looks good
Details

Browse source
This commit is contained in:
Franzi 2020-12-31 22:30:10 +01:00
parent 1a9fadce70
commit ed325848ab
Signed by: kunsi
GPG key ID: 12E3D2136B818350
1 changed files with 2 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
nodes/home/router.py
View file

@ -64,10 +64,9 @@ nodes['home.router'] = {
}, },
'iptables': { 'iptables': {
'custom_rules': [ 'custom_rules': [
# This is a router. Allow forwarding traffic for all internal networks. # This is a router. Allow forwarding traffic for internal networks.
'iptables_both -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT', 'iptables_both -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT',
'iptables_both -A FORWARD -i enp1s0.23 -o enp1s0.42 -j REJECT', 'iptables_both -A FORWARD -i enp1s0.23 -o ppp0 -j ACCEPT',
'iptables_both -A FORWARD -i enp1s0.23 -j ACCEPT',
'iptables_both -A FORWARD -i enp1s0.42 -j ACCEPT', 'iptables_both -A FORWARD -i enp1s0.42 -j ACCEPT',
# External port 2022 should be home.nas # External port 2022 should be home.nas