From a4b53d344df059827dbe9ba74a51c5a3851ec72e Mon Sep 17 00:00:00 2001
From: Astro <astro@spaceboyz.net>
Date: Fri, 30 Apr 2021 00:08:49 +0200
Subject: [PATCH] freifunk: fix ip rules

---
 hosts/containers/freifunk/default.nix | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/hosts/containers/freifunk/default.nix b/hosts/containers/freifunk/default.nix
index 6db2760f..73609055 100644
--- a/hosts/containers/freifunk/default.nix
+++ b/hosts/containers/freifunk/default.nix
@@ -47,7 +47,9 @@ in {
     # masquerading anything that isn't already their IP range
     extraCommands = ''
       ${pkgs.iproute}/bin/ip rule del priority 300 || true
-      ${pkgs.iproute}/bin/ip rule add to 10.200.0.0/16 table bmx priority 300
+      ${pkgs.iproute}/bin/ip rule add to 10.200.0.0/16 table bmx_hosts priority 300
+      ${pkgs.iproute}/bin/ip rule del priority 33000 || true
+      ${pkgs.iproute}/bin/ip rule add table bmx_tuns priority 33000
       ${pkgs.iptables}/bin/iptables -t nat -F POSTROUTING
       ${pkgs.iptables}/bin/iptables -t nat -A POSTROUTING \
         \! --source 10.200.0.0/15 -o ${meshInterface} -j SNAT --to 10.200.${ddmeshAddrPart}