EH22/nox
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

configure jool a bit more

Browse source
This commit is contained in:
lilly 2025-03-18 18:14:36 +01:00
parent 712f0f4a17
commit 49f11bea9d
Signed by: lilly
SSH key fingerprint: SHA256:y9T5GFw2A20WVklhetIxG1+kcg/Ce0shnQmbu1LQ37g
3 changed files with 10 additions and 37 deletions

2
switch_remote.sh
View file

@ -8,7 +8,9 @@ CONFIG=$3
set -x
exec nixos-rebuild $ACTION \
--use-substitutes \
--no-build-nix \
--use-remote-sudo \
--build-host $HOST \
--target-host $HOST \
--flake ".#${CONFIG}"

44
systems/jool.eh22.intern.nix
View file

@ -6,56 +6,26 @@
{
imports = [ ];
networking.nftables.enable = true;
# configure jool
networking.jool = {
# siit = {}; TODO
nat64 = {
enable = true;
nat64.default = {
pool4 = [
{
protocol = "TCP";
prefix = "94.45.248.0/25";
prefix = "94.45.248.0/24";
"port range" = "40001-65535";
}
{
protocol = "UDP";
prefix = "94.45.248.128/26";
prefix = "94.45.248.0/24";
"port range" = "40001-65535";
}
{
protocol = "ICMP";
prefix = "94.45.248.192/27";
"port range" = "40001-65535";
}
{
protocol = "TCP";
prefix = "94.45.248.0/25";
"port range" = "40001-65535";
}
{
protocol = "UDP";
prefix = "94.45.248.128/26";
"port range" = "40001-65535";
}
{
protocol = "ICMP";
prefix = "94.45.248.192/27";
"port range" = "40001-65535";
}
{
protocol = "TCP";
prefix = "94.45.248.0/25";
"port range" = "40001-65535";
}
{
protocol = "UDP";
prefix = "94.45.248.128/26";
"port range" = "40001-65535";
}
{
protocol = "ICMP";
prefix = "94.45.248.192/27";
prefix = "94.45.248.0/24";
"port range" = "40001-65535";
}
];

1
systems/sketchy-router.noc.eh22.intern.nix
View file

@ -49,6 +49,7 @@ in
"94.45.240.1/21" # wired
"94.45.254.1/24" # public services subnet
];
# TODO: Add jool routes
};
};
};