konarak/sixnix
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

use sysctl knob to enable forwarding, remove nat block

Browse Source
This commit is contained in:
Konarak 2025-09-12 09:17:21 +05:30
parent 193e73e4a8
commit a2d5333f01
Signed by: konarak
GPG Key ID: DE5E99432B548849
1 changed files with 2 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
modules/network.nix
View File

@ -52,16 +52,12 @@ in {
dns = resolvers; dns = resolvers;
}; };
boot.kernel.sysctl = { "net.ipv6.conf.all.forwarding" = 1; };
imports = [ ./wireguard.nix ]; imports = [ ./wireguard.nix ];
wireguard.interfaces = tunnels; wireguard.interfaces = tunnels;
networking.firewall = { allowedUDPPorts = map (x: x.serverPort) tunnels; }; networking.firewall = { allowedUDPPorts = map (x: x.serverPort) tunnels; };
networking.nat = {
enable = true;
externalInterface = egress.interface;
internalInterfaces = map (x: x.interface) tunnels;
};
} }