Merge remote-tracking branch 'lass/master'

author: makefu <github@syntax-fehler.de> 2017-03-16 23:28:32 +0100
committer: makefu <github@syntax-fehler.de> 2017-03-16 23:28:32 +0100
commit: 4b29caff2681d21ce4be687321fa4ab2f7713cd4 (patch)
tree: c0f59f1eafd87863173a957da3d5b79d69102b83 /lass/2configs/hfos.nix
parent: 6ec1a6296930569c97cf029bad17c998d4fae66d (diff)
parent: 8809797f1063945c03ebd70666c108c45d5d724a (diff)
1 files changed, 8 insertions, 1 deletions
diff --git a/lass/2configs/hfos.nix b/lass/2configs/hfos.nix
index a28a6a5d2..f63e5ea53 100644
--- a/lass/2configs/hfos.nix
+++ b/lass/2configs/hfos.nix
@@ -36,5 +36,12 @@ with import <stockholm/lib>;
     { v6 = false; precedence = 1000; predicate = "-d 213.239.205.246 -p tcp --dport 443"; target = "DNAT --to-destination 192.168.122.208:1443"; }
   ];
 
-  systemd.services.krebs-iptables.after = [ "libvirtd.service" ];
+  # TODO use bridge interfaces instead of this crap
+  systemd.services.libvirtd.serviceConfig.ExecStartPost = let
+    restart-iptables = pkgs.writeDash "restart-iptables" ''
+      #soo hacky
+      ${pkgs.coreutils}/bin/sleep 1s
+      ${pkgs.systemd}/bin/systemctl restart krebs-iptables.service
+    '';
+  in restart-iptables;
 }
author	makefu <github@syntax-fehler.de>	2017-03-16 23:28:32 +0100
committer	makefu <github@syntax-fehler.de>	2017-03-16 23:28:32 +0100
commit	4b29caff2681d21ce4be687321fa4ab2f7713cd4 (patch)
tree	c0f59f1eafd87863173a957da3d5b79d69102b83 /lass/2configs/hfos.nix
parent	6ec1a6296930569c97cf029bad17c998d4fae66d (diff)
parent	8809797f1063945c03ebd70666c108c45d5d724a (diff)