nils/gluon
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

gluon-{iptables => }-clamp-mss-to-pmtu: migrate to nftables

Browse Source
This commit is contained in:
Maciej Krüger 2023-04-25 22:07:25 +02:00
parent d9634cd815
commit 3a7115149c
No known key found for this signature in database
GPG Key ID: 0D948CE19CF49C5F
4 changed files with 6 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
package/gluon-iptables-clamp-mss-to-pmtu/luasrc/lib/gluon/upgrade/800-iptables-mesh-vpn-clamp-mss-to-pmtu
View File

@ -1,11 +0,0 @@
#!/usr/bin/lua
local uci = require('simple-uci').cursor()
uci:section('firewall', 'include', 'vpn_clamp_mss', {
type = 'nftables',
position = 'chain-prepend',
chain = 'mangle_forward',
path = '/lib/gluon/mesh-vpn/nftables-mss.rules',
})
uci:save('firewall')

3
package/gluon-iptables-clamp-mss-to-pmtu/Makefile → package/gluon-nftables-clamp-mss-to-pmtu/Makefile
View File

@ -1,11 +1,12 @@
include $(TOPDIR)/rules.mk
PKG_NAME:=gluon-iptables-clamp-mss-to-pmtu
PKG_NAME:=gluon-nftables-clamp-mss-to-pmtu
include ../gluon.mk
define Package/$(PKG_NAME)
TITLE:=This will establish a firewall rule to clamp the mss to pmtu on the mesh-vpn interface when the connection is towards 64:ff9b::/96
DEPENDS:=+gluon-nftables
endef
define Package/$(PKG_NAME)/description

0
package/gluon-iptables-clamp-mss-to-pmtu/files/lib/gluon/mesh-vpn/nftables-mss.rules → package/gluon-nftables-clamp-mss-to-pmtu/files/lib/gluon/nftables/mesh_vpn_clamp_mss_to_pmtu.nft
View File

4
package/gluon-nftables-clamp-mss-to-pmtu/luasrc/lib/gluon/nftables/mesh_vpn_clamp_mss_to_pmtu.lua Executable file
View File

@ -0,0 +1,4 @@
include('mesh_vpn_clamp_mss_to_pmtu', {
position = 'chain-prepend',
chain = 'mangle_forward',
})