Miki/firmware
1
0
Fork 0
forked from freifunk-franken/firmware
Code Issues Pull Requests Packages Projects Releases Wiki Activity
e5da228cb1
firmware/src/packages/fff/fff-babeld/files/etc/uci-defaults/02-network-rules
Christian Dresel e5da228cb1 fff-babeld: Add rule to lookup in fff table for everything except wireguard 
With this patch the router answers in traceroute over the fff table with
Freifunk IPs and not with the WAN IP. All other connections use the fff
table too.

We already have the rules with 5000 and 5001 so that wireguard does not use
the fff table anyway and connect the VPN only via the main table.

Signed-off-by: Christian Dresel <freifunk@dresel.systems>
Acked-by: Fabian Bläse <fabian@blaese.de>
Reviewed-by: Robert Langhammer <rlanghammer@web.de>
2020-12-16 17:53:56 +01:00

50 lines
1.4 KiB
Plaintext
Raw Blame History

uci batch <<EOF
add network rule
set network.@rule[0].src='10.50.0.0/16'
set network.@rule[0].lookup='10'
set network.@rule[0].priority='20'
add network rule
set network.@rule[1]=rule
set network.@rule[1].dest='10.50.0.0/16'
set network.@rule[1].lookup='10'
set network.@rule[1].priority='20'
add network rule
set network.@rule[2].src='10.83.0.0/16'
set network.@rule[2].lookup='10'
set network.@rule[2].priority='20'
add network rule
set network.@rule[3]=rule
set network.@rule[3].dest='10.83.0.0/16'
set network.@rule[3].lookup='10'
set network.@rule[3].priority='20'
add network rule
set network.@rule[4]=rule
set network.@rule[4].in='mesh'
set network.@rule[4].lookup='10'
set network.@rule[4].priority='31'
add network rule6
set network.@rule6[0]=rule6
set network.@rule6[0].src='fc00::/7'
set network.@rule6[0].lookup='10'
set network.@rule6[0].priority='20'
add network rule6
set network.@rule6[1]=rule6
set network.@rule6[1].dest='fc00::/7'
set network.@rule6[1].lookup='10'
set network.@rule6[1].priority='20'
add network rule6
set network.@rule6[2]=rule6
set network.@rule6[2].in='mesh'
set network.@rule6[2].lookup='10'
set network.@rule6[2].priority='31'
add network rule6
set network.@rule6[3]=rule6
set network.@rule6[3].src='::/0'
set network.@rule6[3].lookup='10'
set network.@rule6[3].priority='32000'
EOF
uci commit network
exit 0
Reference in New Issue View Git Blame Copy Permalink