swann: don't add mopup rules for wg-intfs, since we'll get that via BGP
This commit is contained in:
parent
ca8f808647
commit
5d47f75c2f
1 changed files with 9 additions and 11 deletions
|
@ -177,22 +177,13 @@ in {
|
|||
Table = rtID;
|
||||
};
|
||||
}
|
||||
|
||||
{
|
||||
# Catch-all mop-up rule at the end.
|
||||
routingPolicyRuleConfig = {
|
||||
Family = "both";
|
||||
Priority = relativePriority + 10090;
|
||||
Table = rtID;
|
||||
};
|
||||
}
|
||||
];
|
||||
};
|
||||
tailscaleRule = priority: table: {
|
||||
# Route Tailscale (fwmark 0x80000) via Wireguard first.
|
||||
routingPolicyRuleConfig = {
|
||||
Family = "both";
|
||||
FirewallMark = hexToInt "0x80000";
|
||||
FirewallMark = hexToInt "0x80000"; # Should be "0x80000/0xff0000"
|
||||
Priority = priority;
|
||||
Table = table;
|
||||
};
|
||||
|
@ -284,7 +275,14 @@ in {
|
|||
}]) // {
|
||||
linkConfig.RequiredForOnline = "no";
|
||||
};
|
||||
networks."40-en-gnet" = (physicalNetwork routeTables.gnet "0xcafe" []);
|
||||
networks."40-en-gnet" = (physicalNetwork routeTables.gnet "0xcafe" [{
|
||||
# Catch-all mop-up rule at the end.
|
||||
routingPolicyRuleConfig = {
|
||||
Family = "both";
|
||||
Priority = 32768;
|
||||
Table = routeTables.gnet;
|
||||
};
|
||||
}]);
|
||||
networks."40-br-internal" = {
|
||||
networkConfig.VLAN = [ "vl-eduroam" ];
|
||||
};
|
||||
|
|
Loading…
Reference in a new issue