swann: don't add mopup rules for wg-intfs, since we'll get that via BGP

This commit is contained in:
Luke Granger-Brown 2023-07-19 23:28:58 +01:00
parent ca8f808647
commit 5d47f75c2f

View file

@ -177,22 +177,13 @@ in {
Table = rtID;
};
}
{
# Catch-all mop-up rule at the end.
routingPolicyRuleConfig = {
Family = "both";
Priority = relativePriority + 10090;
Table = rtID;
};
}
];
};
tailscaleRule = priority: table: {
# Route Tailscale (fwmark 0x80000) via Wireguard first.
routingPolicyRuleConfig = {
Family = "both";
FirewallMark = hexToInt "0x80000";
FirewallMark = hexToInt "0x80000"; # Should be "0x80000/0xff0000"
Priority = priority;
Table = table;
};
@ -284,7 +275,14 @@ in {
}]) // {
linkConfig.RequiredForOnline = "no";
};
networks."40-en-gnet" = (physicalNetwork routeTables.gnet "0xcafe" []);
networks."40-en-gnet" = (physicalNetwork routeTables.gnet "0xcafe" [{
# Catch-all mop-up rule at the end.
routingPolicyRuleConfig = {
Family = "both";
Priority = 32768;
Table = routeTables.gnet;
};
}]);
networks."40-br-internal" = {
networkConfig.VLAN = [ "vl-eduroam" ];
};