From 4bfc6f1e293c2022d5238c1c09db130d80eea94d Mon Sep 17 00:00:00 2001 From: Niklas Yann Wettengel Date: Fri, 8 Jun 2018 16:59:35 +0200 Subject: added whitelist for uplinks --- roles/install_babeld/templates/babeld.conf.j2 | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) (limited to 'roles/install_babeld/templates/babeld.conf.j2') diff --git a/roles/install_babeld/templates/babeld.conf.j2 b/roles/install_babeld/templates/babeld.conf.j2 index fbf7e30..4651b2f 100644 --- a/roles/install_babeld/templates/babeld.conf.j2 +++ b/roles/install_babeld/templates/babeld.conf.j2 @@ -38,7 +38,11 @@ reflect-kernel-metric true # Filtering rules. {% if 'uplink' in group_names %} -in le 0 deny # ignore default routes on uplinks +in ip 10.222.0.0/16 allow +in ip 2a03:2260:1016::/48 allow +in ip 2003:46:e028::/48 allow # finzelberg +in ip fd62:44e1:da::/48 allow +in deny # ignore default routes on uplinks {% endif %} {% if 'mullvad_uplink' in group_names %} -- cgit v1.2.3-54-g00ecf