ma 1 darth: remove nat

author: makefu <github@syntax-fehler.de> 2016-06-23 16:56:13 +0200
committer: makefu <github@syntax-fehler.de> 2016-06-23 16:56:13 +0200
commit: 55905dabdf6b6e0bbed99b6ab1349d4e24d7578a (patch)
tree: d6ac574b1ace6b4c0a3f837e6b747b730033208a
parent: 5894ecc94233b72003ac859fab8b12c8ade7766a (diff)
1 files changed, 3 insertions, 9 deletions
diff --git a/makefu/1systems/darth.nix b/makefu/1systems/darth.nix
index 08ac7e66e..5f1d6e121 100644
--- a/makefu/1systems/darth.nix
+++ b/makefu/1systems/darth.nix
@@ -33,16 +33,10 @@ in {
     firewall = {
       allowPing = true;
       logRefusedConnections = false;
-      allowedUDPPorts = [ 80 655 67 ];
-      allowedTCPPorts = [ 80 655 ];
-    };
-    nat = {
-      enable = true;
-      internalIPs = [ "10.8.10.0/24" ];
-      #internalInterfaces = [ "tinc.siem" ];
-      externalIP = "10.8.8.2";
-      externalInterface = "virbr3";
+      allowedUDPPorts = [ 80 655 1655 67 ];
+      allowedTCPPorts = [ 80 655 1655 ];
     };
+    # fallback connection to the internal virtual network
     interfaces.virbr3.ip4 =  [{
       address = "10.8.8.2";
       prefixLength = 24;
author	makefu <github@syntax-fehler.de>	2016-06-23 16:56:13 +0200
committer	makefu <github@syntax-fehler.de>	2016-06-23 16:56:13 +0200
commit	55905dabdf6b6e0bbed99b6ab1349d4e24d7578a (patch)
tree	d6ac574b1ace6b4c0a3f837e6b747b730033208a
parent	5894ecc94233b72003ac859fab8b12c8ade7766a (diff)