diff options
Diffstat (limited to 'hosts/vidhar')
-rw-r--r-- | hosts/vidhar/default.nix | 25 |
1 files changed, 13 insertions, 12 deletions
diff --git a/hosts/vidhar/default.nix b/hosts/vidhar/default.nix index a13398db..45953d93 100644 --- a/hosts/vidhar/default.nix +++ b/hosts/vidhar/default.nix | |||
@@ -106,23 +106,24 @@ | |||
106 | ip46tables -A FORWARD -j nixos-fw-forward | 106 | ip46tables -A FORWARD -j nixos-fw-forward |
107 | 107 | ||
108 | 108 | ||
109 | ip46tables -t nat -D POSTROUTING -j nixos-fw-postrouting 2>/dev/null || true | 109 | ip46tables -t nat -D POSTROUTING -j nixos-fw-postrouting-nat 2>/dev/null || true |
110 | ip46tables -t nat -F nixos-fw-postrouting 2>/dev/null || true | 110 | ip46tables -t nat -F nixos-fw-postrouting-nat 2>/dev/null || true |
111 | ip46tables -t nat -X nixos-fw-postrouting 2>/dev/null || true | 111 | ip46tables -t nat -X nixos-fw-postrouting-nat 2>/dev/null || true |
112 | 112 | ||
113 | ip46tables -t nat -N nixos-fw-postrouting 2>/dev/null || true | 113 | ip46tables -t nat -N nixos-fw-postrouting-nat 2>/dev/null || true |
114 | iptables -t nat -A nixos-fw-postrouting -o dsl -j MASQUERADE | 114 | iptables -t nat -A nixos-fw-postrouting-nat -o dsl -j MASQUERADE |
115 | 115 | ||
116 | ip46tables -t nat -A POSTROUTING -j nixos-fw-postrouting | 116 | ip46tables -t nat -A POSTROUTING -j nixos-fw-postrouting-nat |
117 | 117 | ||
118 | ip46tables -t mangle -D POSTROUTING -j nixos-fw-postrouting 2>/dev/null || true | ||
119 | ip46tables -t mangle -F nixos-fw-postrouting 2>/dev/null || true | ||
120 | ip46tables -t mangle -X nixos-fw-postrouting 2>/dev/null || true | ||
121 | 118 | ||
122 | ip46tables -t mangle -N nixos-fw-postrouting 2>/dev/null || true | 119 | ip46tables -t mangle -D POSTROUTING -j nixos-fw-postrouting-mangle 2>/dev/null || true |
123 | ip46tables -A nixos-fw-postrouting -t mangle -o dsl -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu | 120 | ip46tables -t mangle -F nixos-fw-postrouting-mangle 2>/dev/null || true |
121 | ip46tables -t mangle -X nixos-fw-postrouting-mangle 2>/dev/null || true | ||
124 | 122 | ||
125 | ip46tables -t mangle -A POSTROUTING -j nixos-fw-postrouting | 123 | ip46tables -t mangle -N nixos-fw-postrouting-mangle 2>/dev/null || true |
124 | ip46tables -t mangle -A nixos-fw-postrouting-mangle -o dsl -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu | ||
125 | |||
126 | ip46tables -t mangle -A POSTROUTING -j nixos-fw-postrouting-mangle | ||
126 | ''; | 127 | ''; |
127 | }; | 128 | }; |
128 | }; | 129 | }; |