From a4e1bb74cfd178100fbe0ee5269cbad444a5a2d7 Mon Sep 17 00:00:00 2001
From: clerie <git@clerie.de>
Date: Sat, 26 Dec 2020 01:50:50 +0100
Subject: [PATCH] Active nat for vpn

---
 hosts/gatekeeper/configuration.nix | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/hosts/gatekeeper/configuration.nix b/hosts/gatekeeper/configuration.nix
index 1a2118b..0d29277 100644
--- a/hosts/gatekeeper/configuration.nix
+++ b/hosts/gatekeeper/configuration.nix
@@ -31,6 +31,13 @@
   networking.defaultGateway6 = { address = "fe80::1"; interface = "ens3"; };
   networking.nameservers = [ "213.133.98.98" "213.133.99.99" "213.133.100.100" ];
 
+  networking.nat = {
+    enable = true;
+    externalInterface = "ens3";
+    internalInterfaces = [ "wg-vpn" ];
+    internalIPs = [ "10.20.30.0/24" ];
+  };
+
   networking.wireguard.enable = true;
   networking.wireguard.interfaces = {
     wg-vpn = {