summaryrefslogtreecommitdiffstats
path: root/lass/1systems/prism.nix
diff options
context:
space:
mode:
authorlassulus <lass@lassul.us>2017-01-21 18:37:48 +0100
committerlassulus <lass@lassul.us>2017-01-21 18:37:48 +0100
commitc3be272e9b699033437a34c37feecd7775c84046 (patch)
treebc0f2865746ec107a5ab036151a7603aa8da83f6 /lass/1systems/prism.nix
parentbd9dddd97fe5b881ac07d52f047e775bbdaf406b (diff)
l 1 prism: forward 1337 to onondaga
Diffstat (limited to 'lass/1systems/prism.nix')
-rw-r--r--lass/1systems/prism.nix6
1 files changed, 6 insertions, 0 deletions
diff --git a/lass/1systems/prism.nix b/lass/1systems/prism.nix
index 313a18a9c..34d81f099 100644
--- a/lass/1systems/prism.nix
+++ b/lass/1systems/prism.nix
@@ -252,6 +252,12 @@ in {
origin.ref = "heads/nin";
mirror.url = "git@${config.networking.hostName}:stockholm";
};
+ krebs.iptables.tables.nat.PREROUTING.rules = [
+ { v6 = false; precedence = 1000; predicate = "-d 213.239.205.240 -p tcp --dport 1337"; target = "DNAT --to-destination 192.168.122.24:22"; }
+ ];
+ krebs.iptables.tables.filter.FORWARD.rules = [
+ { v6 = false; precedence = 1000; predicate = "-d 192.168.122.24 -p tcp --dport 22 -m state --state NEW,ESTABLISHED,RELATED"; target = "ACCEPT"; }
+ ];
}
];