albert/nix
albert/nix
1
0
Fork 0
Code Issues Pull requests Activity Actions

Test

Browse source
This commit is contained in:
iFargle 2023-12-06 11:30:40 +09:00
parent 5a343ffb97
commit 9eb2fb98f0
2 changed files with 2 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
nixos/hosts/framework-server/default.nix
View file

@ -54,8 +54,8 @@
# Forward mail port 25 to sysctl.io / linode # Forward mail port 25 to sysctl.io / linode
networking.firewall.extraCommands = '' networking.firewall.extraCommands = ''
iptables -t nat -A OUTPUT -p tcp --dport 25 -j DNAT --to-destination 10.100.0.1:25 iptables -A PREROUTING -t nat -i wireguard0 -p tcp --dport 25 -j DNAT --to 10.100.0.1:25
iptables -t nat -A OUTPUT -p tcp --dport 25 -j DNAT --to-destination 10.100.0.1:25 iptables -A INPUT -p tcp -m state --state NEW --dport 25 -i wireguard0 -j ACCEPT
''; '';
boot.initrd.services.udev.rules = '' boot.initrd.services.udev.rules = ''

1
nixos/hosts/framework-server/wireguard.nix
View file

@ -26,7 +26,6 @@
presharedKeyFile = "/run/secrets/wireguard_keys/preshared_key"; presharedKeyFile = "/run/secrets/wireguard_keys/preshared_key";
persistentKeepalive = 5; persistentKeepalive = 5;
allowedIPs = [ "10.100.0.1/32" ]; allowedIPs = [ "10.100.0.1/32" ];
# endpoint = "64.176.54.57:51820"; # osaka-vultr-01
endpoint = "172.234.84.222:51820"; # osaka-linode-01 endpoint = "172.234.84.222:51820"; # osaka-linode-01
} }
]; ];