Cloonar/nixos
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

add nat

Browse source
This commit is contained in:
Dominik Polakovics Polakovics 2023-12-03 22:34:58 +01:00
parent 38d5a26e78
commit 70fd15c5dd
2 changed files with 3 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

2
hosts/fw.cloonar.com/modules/firewall.nix
View file

@ -137,7 +137,7 @@
# Setup NAT masquerading on external interfaces # Setup NAT masquerading on external interfaces
chain postrouting { chain postrouting {
type nat hook postrouting priority filter; policy accept; type nat hook postrouting priority filter; policy accept;
oifname { "wan", "wrwks", "wg_epicenter", "wg_ghetto_at" } masquerade oifname { "wan", "server", "wrwks", "wg_epicenter", "wg_ghetto_at" } masquerade
} }
} }
''; '';

4
hosts/fw.cloonar.com/modules/gitea.nix
View file

@ -111,8 +111,8 @@ in
}; };
}; };
bindMounts = { bindMounts = {
"${security.acme.certs.${domain}.directory}" = { "/var/lib/acme/gitea/" = {
hostPath = "/var/lib/acme/gitea/"; hostPath = "${security.acme.certs.${domain}.directory}";
isReadOnly = true; isReadOnly = true;
}; };
}; };