qenya/birdsong
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

just enable IP forwarding on router instead of full NAT module

Browse source
This commit is contained in:
Katherina Walshe-Grey 2024-08-06 20:05:37 +01:00
parent 752faa333d
commit 2fd6d96a00
1 changed files with 5 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

11
peering.nix
View file

@ -61,13 +61,12 @@ in
} }
]; ];
networking = { boot.kernel.sysctl = mkIf host.isRouter {
nat = mkIf host.isRouter { "net.ipv4.conf.${cfg.interface}.forwarding" = true;
enable = true; "net.ipv6.conf.${cfg.interface}.forwarding" = true;
enableIPv6 = true; };
internalInterfaces = [ "birdsong" ];
};
networking = {
firewall.allowedUDPPorts = mkIf cfg.openPorts [ host.port ]; firewall.allowedUDPPorts = mkIf cfg.openPorts [ host.port ];
wireguard.interfaces.${cfg.interface} = { wireguard.interfaces.${cfg.interface} = {