diff options
author | lassulus <lassulus@lassul.us> | 2022-12-11 20:08:03 +0100 |
---|---|---|
committer | lassulus <lassulus@lassul.us> | 2022-12-11 20:08:03 +0100 |
commit | 03ec5460b2bd2c74fdcab023d114f9997b71b15c (patch) | |
tree | 0a6b916a64330f53ad40c49b612a1740d5706d7e /lass/1systems/yellow | |
parent | 00a232bc437b903372740f0dfbd0589616ed8bc8 (diff) |
l yellow.r: allow internal traffic & dns
Diffstat (limited to 'lass/1systems/yellow')
-rw-r--r-- | lass/1systems/yellow/config.nix | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/lass/1systems/yellow/config.nix b/lass/1systems/yellow/config.nix index 519665a3d..c8077e5ea 100644 --- a/lass/1systems/yellow/config.nix +++ b/lass/1systems/yellow/config.nix @@ -167,7 +167,9 @@ in { { v6 = false; predicate = "-d ${vpnIp}/32"; target = "ACCEPT"; } { predicate = "-o tun0"; target = "ACCEPT"; } { predicate = "-o retiolum"; target = "ACCEPT"; } - { v6 = false; predicate = "-o eth0 -d 10.233.0.0/24"; target = "ACCEPT"; } + { v6 = false; predicate = "-d 1.1.1.1/32"; target = "ACCEPT"; } + { v6 = false; predicate = "-d 1.0.0.1/32"; target = "ACCEPT"; } + { v6 = false; predicate = "-o eth0 -d 10.233.2.0/24"; target = "ACCEPT"; } ]; }; }; |