clerie/nixfiles
1
0
Fork 0
Code

Block IP4 traffic from and to guest network

Browse Source
This commit is contained in:
clerie 2021-08-01 14:50:31 +02:00
parent 008a51702a
commit 222d538de6
1 changed files with 7 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
hosts/carbon/configuration.nix
View File

@ -115,6 +115,13 @@
networking.firewall.allowedUDPPorts = [ 60001 ]; networking.firewall.allowedUDPPorts = [ 60001 ];
networking.firewwall.extraCommands = [
"iptables -A FORWARD -i enp1s0.202 -o enp1s0.102 -j ACCEPT"
"iptables -A FORWARD -i enp1s0.202 -j DROP"
"iptables -A FORWARD -i enp1s0.102 -o enp1s0.202 -j ACCEPT"
"iptables -A FORWARD -o enp1s0.202 -j DROP"
];
# Routing tables # Routing tables
# Table: 10000 # Table: 10000
# - primary routes # - primary routes