upstream: reflect on entire internal network
This commit is contained in:
parent
b2b8ba1252
commit
753cd1d5f3
|
@ -111,11 +111,7 @@ in
|
||||||
iptables -t nat -A nixos-nat-post \
|
iptables -t nat -A nixos-nat-post \
|
||||||
-d ${destinationIP} -p ${fwd.proto} \
|
-d ${destinationIP} -p ${fwd.proto} \
|
||||||
--dport ${destinationPorts} \
|
--dport ${destinationPorts} \
|
||||||
-s ${config.site.net.core.subnet4} -j MASQUERADE
|
-s 172.20.72.0/21 -j MASQUERADE
|
||||||
iptables -t nat -A nixos-nat-post \
|
|
||||||
-d ${destinationIP} -p ${fwd.proto} \
|
|
||||||
--dport ${destinationPorts} \
|
|
||||||
-s ${config.site.net.c3d2.subnet4} -j MASQUERADE
|
|
||||||
'') config.networking.nat.forwardPorts}
|
'') config.networking.nat.forwardPorts}
|
||||||
''}
|
''}
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue
Block a user