theis.gaedigk/wg-easy-ca-lose
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

Deployed 7964dc7 to edge with MkDocs 1.6.1 and mike 2.1.3

Browse Source
This commit is contained in:
github-actions[bot]
2026-01-12 07:33:29 +00:00
parent 3ee03076c9
commit 402edbc8ba
4 changed files with 39 additions and 30 deletions
Download Patch File Download Diff File Expand all files Collapse all files
edge/examples/tutorials/routed/index.html
+9
View File
@@ -2015,6 +2015,15 @@ sysctl<span class="w"> </span>-n<span class="w"> </span>net.ipv4.ip_forward<span
<p>PostDown</p>
<div class="highlight"><pre><span></span><code>iptables<span class="w"> </span>-D<span class="w"> </span>INPUT<span class="w"> </span>-p<span class="w"> </span>udp<span class="w"> </span>-m<span class="w"> </span>udp<span class="w"> </span>--dport<span class="w"> </span><span class="o">{{</span>port<span class="o">}}</span><span class="w"> </span>-j<span class="w"> </span>ACCEPT<span class="p">;</span><span class="w"> </span>iptables<span class="w"> </span>-D<span class="w"> </span>FORWARD<span class="w"> </span>-i<span class="w"> </span>wg0<span class="w"> </span>-j<span class="w"> </span>ACCEPT<span class="p">;</span><span class="w"> </span>iptables<span class="w"> </span>-D<span class="w"> </span>FORWARD<span class="w"> </span>-o<span class="w"> </span>wg0<span class="w"> </span>-j<span class="w"> </span>ACCEPT<span class="p">;</span><span class="w"> </span>ip6tables<span class="w"> </span>-D<span class="w"> </span>INPUT<span class="w"> </span>-p<span class="w"> </span>udp<span class="w"> </span>-m<span class="w"> </span>udp<span class="w"> </span>--dport<span class="w"> </span><span class="o">{{</span>port<span class="o">}}</span><span class="w"> </span>-j<span class="w"> </span>ACCEPT<span class="p">;</span><span class="w"> </span>ip6tables<span class="w"> </span>-D<span class="w"> </span>FORWARD<span class="w"> </span>-i<span class="w"> </span>wg0<span class="w"> </span>-j<span class="w"> </span>ACCEPT<span class="p">;</span><span class="w"> </span>ip6tables<span class="w"> </span>-D<span class="w"> </span>FORWARD<span class="w"> </span>-o<span class="w"> </span>wg0<span class="w"> </span>-j<span class="w"> </span>ACCEPT
</code></pre></div>
<div class="admonition warning">
<p class="admonition-title">Important: When using nftables use the following hooks instead.</p>
<p>PostUp</p>
<div class="highlight"><pre><span></span><code>nft<span class="w"> </span>add<span class="w"> </span>chain<span class="w"> </span>ip<span class="w"> </span>filter<span class="w"> </span>WG_EASY<span class="p">;</span><span class="w"> </span>nft<span class="w"> </span>add<span class="w"> </span>rule<span class="w"> </span>ip<span class="w"> </span>filter<span class="w"> </span>DOCKER-USER<span class="w"> </span>jump<span class="w"> </span>WG_EASY<span class="p">;</span><span class="w"> </span>nft<span class="w"> </span>add<span class="w"> </span>rule<span class="w"> </span>ip<span class="w"> </span>filter<span class="w"> </span>WG_EASY<span class="w"> </span>iifname<span class="w"> </span><span class="o">{{</span>device<span class="o">}}</span><span class="w"> </span>accept<span class="p">;</span><span class="w"> </span>nft<span class="w"> </span>add<span class="w"> </span>rule<span class="w"> </span>ip<span class="w"> </span>filter<span class="w"> </span>WG_EASY<span class="w"> </span>oifname<span class="w"> </span><span class="o">{{</span>device<span class="o">}}</span><span class="w"> </span>accept<span class="p">;</span><span class="w"> </span>nft<span class="w"> </span>add<span class="w"> </span>chain<span class="w"> </span>ip6<span class="w"> </span>filter<span class="w"> </span>WG_EASY<span class="p">;</span><span class="w"> </span>nft<span class="w"> </span>add<span class="w"> </span>rule<span class="w"> </span>ip6<span class="w"> </span>filter<span class="w"> </span>DOCKER-USER<span class="w"> </span>jump<span class="w"> </span>WG_EASY<span class="p">;</span><span class="w"> </span>nft<span class="w"> </span>add<span class="w"> </span>rule<span class="w"> </span>ip6<span class="w"> </span>filter<span class="w"> </span>WG_EASY<span class="w"> </span>iifname<span class="w"> </span><span class="o">{{</span>device<span class="o">}}</span><span class="w"> </span>accept<span class="p">;</span><span class="w"> </span>nft<span class="w"> </span>add<span class="w"> </span>rule<span class="w"> </span>ip6<span class="w"> </span>filter<span class="w"> </span>WG_EASY<span class="w"> </span>oifname<span class="w"> </span><span class="o">{{</span>device<span class="o">}}</span><span class="w"> </span>accept<span class="p">;</span>
</code></pre></div>
<p>PostDown</p>
<div class="highlight"><pre><span></span><code>nft<span class="w"> </span>delete<span class="w"> </span>rule<span class="w"> </span>ip<span class="w"> </span>filter<span class="w"> </span>DOCKER-USER<span class="w"> </span>handle<span class="w"> </span><span class="k">$(</span>nft<span class="w"> </span>-a<span class="w"> </span>list<span class="w"> </span>chain<span class="w"> </span>ip<span class="w"> </span>filter<span class="w"> </span>DOCKER-USER<span class="w"> </span><span class="p">|</span><span class="w"> </span>awk<span class="w"> </span><span class="s1">&#39;/jump WG_EASY/ {print $NF}&#39;</span><span class="k">)</span><span class="p">;</span><span class="w"> </span>nft<span class="w"> </span>flush<span class="w"> </span>chain<span class="w"> </span>ip<span class="w"> </span>filter<span class="w"> </span>WG_EASY<span class="p">;</span><span class="w"> </span>nft<span class="w"> </span>delete<span class="w"> </span>chain<span class="w"> </span>ip<span class="w"> </span>filter<span class="w"> </span>WG_EASY<span class="p">;</span><span class="w"> </span>nft<span class="w"> </span>delete<span class="w"> </span>rule<span class="w"> </span>ip6<span class="w"> </span>filter<span class="w"> </span>DOCKER-USER<span class="w"> </span>handle<span class="w"> </span><span class="k">$(</span>nft<span class="w"> </span>-a<span class="w"> </span>list<span class="w"> </span>chain<span class="w"> </span>ip6<span class="w"> </span>filter<span class="w"> </span>DOCKER-USER<span class="w"> </span><span class="p">|</span><span class="w"> </span>awk<span class="w"> </span><span class="s1">&#39;/jump WG_EASY/ {print $NF}&#39;</span><span class="k">)</span><span class="p">;</span><span class="w"> </span>nft<span class="w"> </span>flush<span class="w"> </span>chain<span class="w"> </span>ip6<span class="w"> </span>filter<span class="w"> </span>WG_EASY<span class="p">;</span><span class="w"> </span>nft<span class="w"> </span>delete<span class="w"> </span>chain<span class="w"> </span>ip6<span class="w"> </span>filter<span class="w"> </span>WG_EASY
</code></pre></div>
</div>