From b2e45b56bbb5beca4d82e9d35331be6c7ba7eeb5 Mon Sep 17 00:00:00 2001 From: Luke Granger-Brown Date: Mon, 30 Aug 2021 20:52:20 +0100 Subject: [PATCH] blade-tuvok: make sure wg-endpoint sysctl gets forwarding enabled --- ops/nixos/blade-tuvok/default.nix | 1 + 1 file changed, 1 insertion(+) diff --git a/ops/nixos/blade-tuvok/default.nix b/ops/nixos/blade-tuvok/default.nix index 1f97669f9d..43c110fbe0 100644 --- a/ops/nixos/blade-tuvok/default.nix +++ b/ops/nixos/blade-tuvok/default.nix @@ -35,6 +35,7 @@ in { ip -n wg-endpoint addr add 2a09:a441::f00f/48 dev ve-int ip -n wg-endpoint route add default via 92.118.28.1 ip -n wg-endpoint route add default via 2a09:a441::1 + ip netns exec wg-endpoint sysctl net.ipv4.ip_forward=1 net.ipv6.conf.all.forwarding=1 ) ''; };