diff options
author | lassulus <lass@lassul.us> | 2017-01-21 18:37:48 +0100 |
---|---|---|
committer | lassulus <lass@lassul.us> | 2017-01-21 18:37:48 +0100 |
commit | c3be272e9b699033437a34c37feecd7775c84046 (patch) | |
tree | bc0f2865746ec107a5ab036151a7603aa8da83f6 | |
parent | bd9dddd97fe5b881ac07d52f047e775bbdaf406b (diff) |
l 1 prism: forward 1337 to onondaga
-rw-r--r-- | lass/1systems/prism.nix | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/lass/1systems/prism.nix b/lass/1systems/prism.nix index 313a18a9c..34d81f099 100644 --- a/lass/1systems/prism.nix +++ b/lass/1systems/prism.nix @@ -252,6 +252,12 @@ in { origin.ref = "heads/nin"; mirror.url = "git@${config.networking.hostName}:stockholm"; }; + krebs.iptables.tables.nat.PREROUTING.rules = [ + { v6 = false; precedence = 1000; predicate = "-d 213.239.205.240 -p tcp --dport 1337"; target = "DNAT --to-destination 192.168.122.24:22"; } + ]; + krebs.iptables.tables.filter.FORWARD.rules = [ + { v6 = false; precedence = 1000; predicate = "-d 192.168.122.24 -p tcp --dport 22 -m state --state NEW,ESTABLISHED,RELATED"; target = "ACCEPT"; } + ]; } ]; |