summaryrefslogtreecommitdiffstats
path: root/krebs/2configs/container-networking.nix
diff options
context:
space:
mode:
authorlassulus <lassulus@lassul.us>2021-03-26 20:11:21 +0100
committerlassulus <lassulus@lassul.us>2021-03-26 20:11:21 +0100
commit7bfa242064e8a36a0568143fb66f46cd401cc734 (patch)
treecdf735ae821a6bf0a88a7c3bba522d91b21007cd /krebs/2configs/container-networking.nix
parent55c348834bdb548cc01959f27aeb1d9ac8fd5670 (diff)
container-networking: configure nat for containers
Diffstat (limited to 'krebs/2configs/container-networking.nix')
-rw-r--r--krebs/2configs/container-networking.nix7
1 files changed, 7 insertions, 0 deletions
diff --git a/krebs/2configs/container-networking.nix b/krebs/2configs/container-networking.nix
new file mode 100644
index 000000000..fa4488800
--- /dev/null
+++ b/krebs/2configs/container-networking.nix
@@ -0,0 +1,7 @@
+{ lib, ... }:
+{
+ networking.nat.enable = true;
+ networking.nat.internalInterfaces = ["ve-+"];
+ networking.nat.externalInterface = lib.mkDefault "et0";
+ networking.networkmanager.unmanaged = [ "interface-name:ve-*" ];
+}