winzlieb/network
winzlieb/network
1
0
Fork 0
forked from zentralwerk/network
Code Issues Pull Requests Projects Releases Wiki Activity

nixos-module/container/upstream: try fixing upstream.noNat.subnets4

Browse Source
This commit is contained in:
Astro 2022-09-18 23:02:46 +02:00
parent 8ee629945d
commit 6a181bbf18
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
nix/nixos-module/container/upstream.nix
View File

@ -94,7 +94,8 @@ in
# Do not NAT our public IPv4 addresses # Do not NAT our public IPv4 addresses
${lib.concatMapStringsSep "\n" (net: ${lib.concatMapStringsSep "\n" (net:
lib.concatMapStrings (subnet: '' lib.concatMapStrings (subnet: ''
iptables -t nat -I ${net}_nat \ iptables -t nat -I nixos-nat-post \
-o ${net} \
-s ${subnet} \ -s ${subnet} \
-j RETURN -j RETURN
'') upstreamInterfaces.${net}.upstream.noNat.subnets4 or [] '') upstreamInterfaces.${net}.upstream.noNat.subnets4 or []