summaryrefslogtreecommitdiff
path: root/roles/configure_iptables/templates/iptables.rules
diff options
context:
space:
mode:
authorNiklas Yann Wettengel <niyawe@niyawe.de>2018-01-25 18:10:43 +0100
committerNiklas Yann Wettengel <niyawe@niyawe.de>2018-01-25 18:10:43 +0100
commit0e9d895e778b592bc9e823ee2a06e5b15dd638eb (patch)
treec7eddf992b12ae5fdf01003bd75b90fe244ff35e /roles/configure_iptables/templates/iptables.rules
parent99dddff8625388641b9dd84b0e87a55f5c13bc82 (diff)
added mullvad uplink
Diffstat (limited to 'roles/configure_iptables/templates/iptables.rules')
-rw-r--r--roles/configure_iptables/templates/iptables.rules14
1 files changed, 11 insertions, 3 deletions
diff --git a/roles/configure_iptables/templates/iptables.rules b/roles/configure_iptables/templates/iptables.rules
index d395a42..5b5410d 100644
--- a/roles/configure_iptables/templates/iptables.rules
+++ b/roles/configure_iptables/templates/iptables.rules
@@ -10,13 +10,18 @@
{% endfor %}
{% endif %}
-{% if 'ffrl_uplink' in group_names %}
+{% if 'fastd' in group_names %}
+{% for peer in groups['ffrl_uplink'] %}
+-A PREROUTING -i bb{{ hostvars[peer]['wireguard_bb_name'] }} -j MARK --set-xmark 0x1/0xffffffff
+{% endfor %}
+{% endif %}
+{% if 'mullvad_uplink' in group_names %}
{% for peer in groups['fastd'] %}
-A PREROUTING -i bb{{ hostvars[peer]['wireguard_bb_name'] }} -j MARK --set-xmark 0x1/0xffffffff
{% endfor %}
{% endif %}
-{% if 'fastd' in group_names %}
-{% for peer in groups['ffrl_uplink'] %}
+{% if 'ffrl_uplink' in group_names %}
+{% for peer in groups['fastd'] %}
-A PREROUTING -i bb{{ hostvars[peer]['wireguard_bb_name'] }} -j MARK --set-xmark 0x1/0xffffffff
{% endfor %}
{% endif %}
@@ -78,4 +83,7 @@ COMMIT
-A POSTROUTING ! -s {{ ffrl_ip4 }} -o {{ peer.name }} -j SNAT --to-source {{ ffrl_ip4 }}
{% endfor %}
{% endif %}
+{% if 'mullvad_uplink' in group_names %}
+-A POSTROUTING -o mullvad -j MASQUERADE
+{% endif %}
COMMIT
generated by cgit v1.2.3-54-g00ecf (git 2.45.2) at 2024-11-14 17:21:03 +0000