diff options
author | Patrick Spek <p.spek@tyil.nl> | 2024-03-04 10:33:44 +0000 |
---|---|---|
committer | Patrick Spek <p.spek@tyil.nl> | 2024-03-04 11:53:21 +0100 |
commit | 984f205c7b319cbc55554adae5e3dd6a3786d6af (patch) | |
tree | 096d3d555fea1ece645672ada300af62183890cd | |
parent | ea89fa46365392dbeec88d2d44be95d9a61c4870 (diff) |
Add nftables to ricui
-rw-r--r-- | hosts.d/ricui.tyil.net | 5 | ||||
-rw-r--r-- | registry.d/ricui.tyil.net | 1 |
2 files changed, 6 insertions, 0 deletions
diff --git a/hosts.d/ricui.tyil.net b/hosts.d/ricui.tyil.net index 777d17e..740114d 100644 --- a/hosts.d/ricui.tyil.net +++ b/hosts.d/ricui.tyil.net @@ -1,4 +1,9 @@ meta.provider=hetzner +nftables.input.interfaces.cilium*.policy=accept +nftables.input.interfaces.lxc*.policy=accept +nftables.input.rules.kubelet.policy=accept +nftables.input.rules.kubelet.port=10250 +nftables.input.rules.kubelet.proto=tcp vpn-tinc.ipv4=10.57.20.7 vpn-tinc.ipv6=fd68:1057:1992:3381:0:1:1:2 vpn-wireguard.endpoint=2a01:4f8:1c1b:67d7::1 diff --git a/registry.d/ricui.tyil.net b/registry.d/ricui.tyil.net index ac65e43..6f38e85 100644 --- a/registry.d/ricui.tyil.net +++ b/registry.d/ricui.tyil.net @@ -1,3 +1,4 @@ +nftables ssh vpn-tinc vpn-wireguard |