From a2d5333f014e8213c3600b68eae06f731ca3890e Mon Sep 17 00:00:00 2001
From: Konarak <me@konarak.in>
Date: Fri, 12 Sep 2025 09:17:21 +0530
Subject: [PATCH] use sysctl knob to enable forwarding, remove nat block

---
 modules/network.nix | 8 ++------
 1 file changed, 2 insertions(+), 6 deletions(-)

diff --git a/modules/network.nix b/modules/network.nix
index a16c175..10cc4d9 100644
--- a/modules/network.nix
+++ b/modules/network.nix
@@ -52,16 +52,12 @@ in {
     dns = resolvers;
   };
 
+  boot.kernel.sysctl = { "net.ipv6.conf.all.forwarding" = 1; };
+
   imports = [ ./wireguard.nix ];
 
   wireguard.interfaces = tunnels;
 
   networking.firewall = { allowedUDPPorts = map (x: x.serverPort) tunnels; };
 
-  networking.nat = {
-    enable = true;
-    externalInterface = egress.interface;
-    internalInterfaces = map (x: x.interface) tunnels;
-  };
-
 }