motiejus/config
1
Fork 0
Code Packages Releases Activity

br0

Browse Source
This commit is contained in:
Motiejus Jakštys
2026-01-27 19:36:23 +00:00
parent 68a4c154f4
commit d4ad9aa685
1 changed files with 12 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
hosts/mtworx/configuration.nix
View File

@@ -248,8 +248,12 @@ in
hostName = "mtworx"; hostName = "mtworx";
domain = "jakst.vpn"; domain = "jakst.vpn";
# Configure USB Ethernet interface with internal IP bridges.br0 = {
interfaces.enp0s20f0u2 = { interfaces = [ ];
};
# Configure bridge with internal IP
interfaces.br0 = {
ipv4.addresses = [ ipv4.addresses = [
{ {
address = "10.14.143.1"; address = "10.14.143.1";
@@ -261,19 +265,19 @@ in
nat = { nat = {
enable = true; enable = true;
externalInterface = "wlp0s20f3"; externalInterface = "wlp0s20f3";
internalInterfaces = [ "enp0s20f0u2" ]; internalInterfaces = [ "br0" ];
internalIPs = [ "10.14.143.0/24" ]; internalIPs = [ "10.14.143.0/24" ];
}; };
firewall = { firewall = {
rejectPackets = true; rejectPackets = true;
interfaces.enp0s20f0u2 = { interfaces.br0 = {
allowedUDPPorts = [ allowedUDPPorts = [
53 53 # DNS
67 67 # DHCP
69 69 # TFTP
]; ];
allowedTCPPorts = [ 53 ]; allowedTCPPorts = [ 53 ]; # DNS
}; };
extraCommands = '' extraCommands = ''
# Allow only through WiFi interface (to gateway and internet) # Allow only through WiFi interface (to gateway and internet)