From 753cd1d5f37c5a420fb188f53bdaf8c2b8f43191 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Sandro=20J=C3=A4ckel?= <sandro.jaeckel@gmail.com>
Date: Sun, 14 Apr 2024 21:31:00 +0200
Subject: [PATCH] upstream: reflect on entire internal network

---
 nix/nixos-module/container/upstream.nix | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/nix/nixos-module/container/upstream.nix b/nix/nixos-module/container/upstream.nix
index df4215a..ddb8763 100644
--- a/nix/nixos-module/container/upstream.nix
+++ b/nix/nixos-module/container/upstream.nix
@@ -111,11 +111,7 @@ in
           iptables -t nat -A nixos-nat-post \
             -d ${destinationIP} -p ${fwd.proto} \
             --dport ${destinationPorts} \
-            -s ${config.site.net.core.subnet4} -j MASQUERADE
-          iptables -t nat -A nixos-nat-post \
-            -d ${destinationIP} -p ${fwd.proto} \
-            --dport ${destinationPorts} \
-            -s ${config.site.net.c3d2.subnet4} -j MASQUERADE
+            -s 172.20.72.0/21 -j MASQUERADE
         '')  config.networking.nat.forwardPorts}
       ''}