winzlieb/network
winzlieb
/
network
forked from zentralwerk/network
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

nixos-module/container/upstream: catch failures

This commit is contained in:
Astro 2021-05-14 18:56:38 +02:00
parent b23b687dfb
commit 33a4e65f69
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
nix/nixos-module/container/upstream.nix
View File

@ -53,7 +53,8 @@ in
extraCommands =
builtins.concatStringsSep "\n" (
map (net: ''
ip6tables -t nat -N ${net}_nat
ip6tables -t nat -N ${net}_nat || \
ip6tables -t nat -F ${net}_nat
${builtins.concatStringsSep "\n" (
map (subnet: ''
ip6tables -t nat -A ${net}_nat \
@ -71,8 +72,9 @@ in
extraStopCommands =
builtins.concatStringsSep "\n" (
map (net: ''
ip6tables -t nat -F POSTROUTING
ip6tables -t nat -X ${net}_nat
ip6tables -t nat -F POSTROUTING 2>/dev/null || true
ip6tables -t nat -F ${net}_nat 2>/dev/null || true
ip6tables -t nat -X ${net}_nat 2>/dev/null || true
'') (builtins.attrNames upstreamInterfaces)
);
inherit (hostConf) forwardPorts;