CCCHH/ansible-infra
CCCHH/ansible-infra
3
2
Fork 2
Code Issues 8 Pull requests 6 Wiki Activity Actions

router: enable a DHCP server for the v4-NAT network as well

Browse source 
As the hosts don't really need a static v4, just do DHCP.
This commit is contained in:
June 2026-01-07 17:25:27 +01:00
commit 80ddb2efc9
Signed by: june
SSH key fingerprint: SHA256:o9EAq4Y9N9K0pBQeBTqhSDrND5E7oB+60ZNx0U1yPe0
2 changed files with 7 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
resources/chaosknoten/router/nftables/nftables.conf
View file

@ -45,7 +45,7 @@ table inet host {
tcp dport 22 accept comment "allow ssh access" tcp dport 22 accept comment "allow ssh access"
# Allow DHCP server access. # Allow DHCP server access.
iifname $if_net0_3_ci_runner udp dport 67 accept comment "allow dhcp server access" iifname { $if_net0_2_v4_nat, $if_net0_3_ci_runner } udp dport 67 accept comment "allow dhcp server access"
} }
} }

6
resources/chaosknoten/router/systemd_networkd/21-net0.2-v4_nat.network
View file

@ -11,6 +11,12 @@ Description=v4-NAT
# Masquerading done in nftables (nftables.conf). # Masquerading done in nftables (nftables.conf).
IPv6SendRA=yes IPv6SendRA=yes
DHCPServer=true
[DHCPServer]
PoolOffset=100
PoolSize=150
[Address] [Address]
Address=10.32.2.1/24 Address=10.32.2.1/24