|
|
8c844dedd2
|
Just copy more upstream code to not do stupid mistakes
|
2024-04-12 00:18:15 +02:00 |
|
|
|
6a29757919
|
Fix eval and nat rules
|
2024-04-12 00:12:12 +02:00 |
|
|
|
611ac377be
|
upstream: fix masquerading
|
2024-04-12 00:01:55 +02:00 |
|
|
|
a2f7356c53
|
Drop nat reflection
We want to preserve the source ip address especially when using ip allow
lists
|
2024-04-11 21:59:58 +02:00 |
|
|
|
f2ac3a3ae2
|
Remove duplicated -t argument
|
2024-03-23 23:32:23 +01:00 |
|
|
|
6c4c86e4a5
|
nixos-module/container/upstream: flush conntrack states after nat startup
|
2023-06-07 23:00:50 +02:00 |
|
|
|
7e3d4fa42a
|
nixos-module/container/upstream: always turn on networking.net.enableIPv6
|
2023-01-11 23:20:49 +01:00 |
|
|
|
f02f15a568
|
Fix eval
|
2022-12-20 05:26:16 +01:00 |
|
|
|
48949a9e44
|
nixos-module/container/upstream: allow smtp by ipv4 dest too
|
2022-12-19 00:26:38 +01:00 |
|
|
|
a1f2e2a1d6
|
nixos-module/container/upstream: allow smtp from flpk too
|
2022-12-18 23:55:33 +01:00 |
|
|
|
626d8076bb
|
nixos-module/container/upstream: move clamp-mss-to-pmtu outa pppoe
|
2022-09-19 21:44:02 +02:00 |
|
|
|
6a181bbf18
|
nixos-module/container/upstream: try fixing upstream.noNat.subnets4
|
2022-09-18 23:02:46 +02:00 |
|
|
|
8ee629945d
|
nixos-module/container/upstream: remove remnants
|
2022-09-18 22:52:31 +02:00 |
|
|
|
2765dd05e2
|
nixos-module/container/upstream: try making upstream.noNat.subnets6 actually work
|
2022-09-18 22:48:25 +02:00 |
|
|
|
555026dd84
|
nixos-module/container/upstream: put noNat.subnets4 in proper iptables chain
|
2022-09-18 19:25:58 +02:00 |
|
|
|
7d6f3f521b
|
nixos-module/container/upstream: fix syntax
|
2022-09-18 19:06:59 +02:00 |
|
|
|
2133522dc8
|
nixos-module/container/upstream: disable dhcp6 just for flpk-gw
|
2022-09-18 18:59:22 +02:00 |
|
|
|
8583b55c0f
|
nixos-module/container/upstream: fix
|
2022-09-18 14:43:07 +02:00 |
|
|
|
bd95d81cba
|
ixos-module/container/upstream: fix noNat6
|
2022-09-18 14:40:44 +02:00 |
|
|
|
05641a7f74
|
flpk-gw: implement upstream.noNat.subnets4
|
2022-09-18 01:42:34 +02:00 |
|
|
|
80f8b041a3
|
nixos-module/container/upstream: fix typo
|
2022-09-13 01:10:13 +02:00 |
|
|
|
a7a9def709
|
nixos-module/container/upstream: fix typo
|
2022-09-13 01:05:00 +02:00 |
|
|
|
09e4beb737
|
nixos-module/container/upstream: catch preexisting iptables chains
|
2022-08-29 19:46:48 +02:00 |
|
|
|
c5f57bd8c1
|
nixos-module/container/upstream: reflect connections to staticIpv4Address
|
2022-08-29 19:22:39 +02:00 |
|
|
|
24e979d6bd
|
nixos-module/container/upstream: use internal core ipv4 address for port forwarding reflection
|
2022-08-27 19:06:39 +02:00 |
|
|
|
32f4b3bd84
|
nixos-module/container/upstream: prohibit forwarding smtp except for serv
|
2022-07-12 01:29:09 +02:00 |
|
|
|
6b36f19af8
|
upstream: fix forwardPorts
|
2021-10-18 01:24:43 +02:00 |
|
|
|
2c3c0fa13c
|
upstream: disable NAT reflection for DNS port forwards
|
2021-10-16 23:56:32 +02:00 |
|
|
|
8b6c7578e8
|
nixos-module/container/upstream: remove a lot of stuff by using loopbackIPs for forwarded ports
|
2021-09-06 23:41:45 +02:00 |
|
|
|
48cbaf5f08
|
nixos-module/container/upstream: fix SNAT for forwarded ports
|
2021-09-06 23:19:08 +02:00 |
|
|
|
501f96a225
|
nixos-module/container/upstream: specify externalIP to use SNAT instead of MASQUERADE
|
2021-09-06 23:17:46 +02:00 |
|
|
|
1b4f761de8
|
nixos-module/container/upstream: fix SNAT by adding a staticIpv4Address option
|
2021-09-06 22:58:52 +02:00 |
|
|
|
fd4c8ad65b
|
nixos-module/container/upstream: do SNAT for forwarded ports
|
2021-09-06 22:11:39 +02:00 |
|
|
|
9c485db8c3
|
partially revert ec5bed6
speedtest-cli is already installed by ../defaults.nix
|
2021-06-01 19:28:42 +02:00 |
|
Daniel Poelzleithner
|
ec5bed6e65
|
Add more packages, speedtest-cli on upstreams
|
2021-05-31 13:44:28 +02:00 |
|
|
|
bd795b270a
|
nixos-module/container/upstream/pppoe: init
|
2021-05-31 00:41:38 +02:00 |
|
|
|
cfb062063a
|
nixos-module/container/upstream: fix DHCP for upstream3, upstream4
|
2021-05-22 01:19:16 +02:00 |
|
|
|
33a4e65f69
|
nixos-module/container/upstream: catch failures
|
2021-05-14 18:56:38 +02:00 |
|
|
|
b23b687dfb
|
nixos-module/container/upstream: add proper networking.nat.extraStopCommands
|
2021-05-14 18:37:45 +02:00 |
|
|
|
03f755f841
|
nixos-module/container/upstream: provide NAT6 with noNat.subnets6
|
2021-05-01 01:14:54 +02:00 |
|
|
|
02de036ba7
|
nixos-module/container/upstream: update DHCPv6PrefixDelegation configuration
|
2021-04-29 01:34:33 +02:00 |
|
|
|
ec6d26ab08
|
s/forwardedPorts/forwardPorts/
|
2021-04-11 02:02:15 +02:00 |
|
|
|
8bdeedea9a
|
nixos-module/container/upstream: style
|
2021-04-11 02:02:15 +02:00 |
|
|
|
9615317bf6
|
nixos-module/container/upstream: enable dhcpv6 prefix delegation
|
2021-04-11 02:02:15 +02:00 |
|
|
|
fcc3fbaf52
|
nixos-module/container/upstream: fix nat
|
2021-04-11 02:02:15 +02:00 |
|
|
|
7615d4d8de
|
nixos-module/container/upstream.nix: setup sched_cake
|
2021-04-11 02:02:15 +02:00 |
|
|
|
c6de032ff3
|
nixos-module/container/upstream.nix: init dhcp, forwardedPorts
|
2021-04-11 02:02:15 +02:00 |
|
