From b426d1703138aab02da569a5fee22bbbc1de401b Mon Sep 17 00:00:00 2001 From: Niklas Yann Wettengel Date: Sun, 16 Jul 2017 14:14:00 +0200 Subject: enable ipv6 exit via mullvad --- roles/configure_iptables/templates/ip6tables.rules | 7 +++++++ roles/install_openvpn/files/mullvad-up.sh | 1 + 2 files changed, 8 insertions(+) diff --git a/roles/configure_iptables/templates/ip6tables.rules b/roles/configure_iptables/templates/ip6tables.rules index 5b7a49c..677e074 100644 --- a/roles/configure_iptables/templates/ip6tables.rules +++ b/roles/configure_iptables/templates/ip6tables.rules @@ -48,3 +48,10 @@ COMMIT {% endfor %} -A FORWARD -o {{ ansible_default_ipv6.interface }} -j REJECT COMMIT +*nat +:PREROUTING ACCEPT [0:0] +:INPUT ACCEPT [0:0] +:OUTPUT ACCEPT [0:0] +:POSTROUTING ACCEPT [0:0] +-A POSTROUTING -o mullvad -j MASQUERADE +COMMIT diff --git a/roles/install_openvpn/files/mullvad-up.sh b/roles/install_openvpn/files/mullvad-up.sh index 75a9632..9a339f0 100755 --- a/roles/install_openvpn/files/mullvad-up.sh +++ b/roles/install_openvpn/files/mullvad-up.sh @@ -3,5 +3,6 @@ sleep 3 echo Reroute via $route_vpn_gateway ip route replace 0.0.0.0/0 via $route_vpn_gateway proto static table ffmyk +ip -6 route replace default dev $dev proto static table ffmyk exit 0 -- cgit v1.2.3-54-g00ecf