2f32bd6c1e
- rewrite interface templates for batman, fastd, ffrl and meshbridge - add package ethtool to role server-basic - use more ipaddr filters and get rid of unneeded variables in dict ffrl_exit_server - change ffrl_public_ipv4_nat variable to ip/prefix format - update readme files
29 lines
646 B
Markdown
29 lines
646 B
Markdown
# Ansible role network-iptables-gateway
|
||
|
||
Diese Ansible role konfiguriert iptables Regeln für IPv4+IPv6 eines Freifunk Gateways.
|
||
|
||
- installiert iptables+iptables-persistent
|
||
- schreibt rules.v4 + rules.v6
|
||
- setzt netfilter sysctl parameter
|
||
|
||
## Benötigte Variablen
|
||
|
||
- List `sysctl_settings_netfilter` (Rollen Variable)
|
||
´´´
|
||
sysctl_settings_netfilter:
|
||
- name: # sysctl-Parameter
|
||
value: # zu setzender Wert
|
||
|
||
´´´
|
||
- Dictionary `meshes`
|
||
´´´
|
||
meshes:
|
||
xx:
|
||
...
|
||
ipv4_network:
|
||
...
|
||
|
||
´´´
|
||
- Variable `internet_exit_mtu_ipv4`
|
||
- Variable `internet_exit_mtu_ipv6`
|
||
- Host Variable `ffrl_public_ipv4_nat` # Format ip-adresse/prefix
|