forked from M-Labs/it-infra
aux: chiron port redirect
This commit is contained in:
parent
0c8019516d
commit
bc848547fd
@ -75,6 +75,9 @@ in
|
||||
|
||||
no-resolv
|
||||
|
||||
# Static IPv4s to make port redirections work
|
||||
dhcp-host=chiron,192.168.14.201
|
||||
|
||||
# Google can't do DNS geolocation correctly and slows down websites of everyone using
|
||||
# their shitty font cloud hosting. In HK, you sometimes get IPs behind the GFW that you
|
||||
# cannot reach.
|
||||
@ -85,6 +88,9 @@ in
|
||||
enable = true;
|
||||
externalInterface = netifWan;
|
||||
internalInterfaces = [ netifLan netifWifi ];
|
||||
forwardPorts = [
|
||||
{ sourcePort = 2201; destination = "192.168.14.201:22"; proto = "tcp"; }
|
||||
];
|
||||
extraCommands = ''
|
||||
iptables -w -N block-lan-from-wifi
|
||||
iptables -w -A block-lan-from-wifi -i ${netifLan} -o ${netifWifi} -j DROP
|
||||
|
Loading…
Reference in New Issue
Block a user