freifunk: remove broken SNAT rule
not needed and breaking internet access for others
This commit is contained in:
parent
df6933ac04
commit
e651466e5c
|
@ -97,8 +97,6 @@ in {
|
|||
# masquerading anything that isn't already their IP range
|
||||
extraCommands = ''
|
||||
${pkgs.iptables}/bin/iptables -t nat -F POSTROUTING
|
||||
${pkgs.iptables}/bin/iptables -t nat -A POSTROUTING \
|
||||
\! --source 10.200.0.0/15 -o ${meshInterface} -j SNAT --to 10.200.${ddmeshAddrPart}
|
||||
${pkgs.iptables}/bin/iptables -t nat -A POSTROUTING \
|
||||
\! --source 10.200.0.0/15 -o ipip-node51001 -j SNAT --to 10.200.${ddmeshAddrPart}
|
||||
${pkgs.iptables}/bin/iptables -t nat -o bat0 -A POSTROUTING -j MASQUERADE
|
||||
|
|
Loading…
Reference in New Issue