freifunk/ansible-ffibk

History

Tobias Hachmer cc43741a91 Role network-iptables-gateway: rename var internet_exit_mtu_ipv[4\|6] to internet_exit_tcp_mss_ipv[4\|6]		2017-10-04 12:55:29 +02:00
..
handlers	Add role network-iptables-gateway	2017-10-02 11:18:16 +02:00
tasks	Add role network-iptables-gateway	2017-10-02 11:18:16 +02:00
templates	Role network-iptables-gateway: rename var internet_exit_mtu_ipv[4\|6] to internet_exit_tcp_mss_ipv[4\|6]	2017-10-04 12:55:29 +02:00
vars	Add role network-iptables-gateway	2017-10-02 11:18:16 +02:00
README.md	Role network-iptables-gateway: rename var internet_exit_mtu_ipv[4\|6] to internet_exit_tcp_mss_ipv[4\|6]	2017-10-04 12:55:29 +02:00

README.md

Ansible role network-iptables-gateway

Diese Ansible role konfiguriert iptables Regeln für IPv4+IPv6 eines Freifunk Gateways.

installiert iptables+iptables-persistent
schreibt rules.v4 + rules.v6
setzt netfilter sysctl parameter

Benötigte Variablen

List sysctl_settings_netfilter (Rollen Variable) ´´´ sysctl_settings_netfilter:
- name: # sysctl-Parameter value: # zu setzender Wert

´´´

Dictionary meshes ´´´ meshes: xx: ... ipv4_network: ...

´´´

Variable internet_exit_tcp_mss_ipv4
Variable internet_exit_tcp_mss_ipv6
Host Variable ffrl_public_ipv4_nat # Format ip-adresse/prefix