Use snat rule instead if masquerade for wireguard nat

2023-09-19 15:58:42 +02:00 · 2023-09-19 15:58:42 +02:00 · 215065aa6c
commit 215065aa6c
parent 0d820c58af
3 changed files with 7 additions and 16 deletions
--- a/config/hosts/valkyrie/services.nix
+++ b/config/hosts/valkyrie/services.nix
@ -3,6 +3,7 @@ let
  wireguard-nat-nftables = import ../../../pkgs/wireguard-nat-nftables pkgs;
  config = pkgs.writeText "wireguard-nat-nftables-config" (builtins.toJSON {
    interface = "ens3";
+    interface_address = "172.16.4.180";
    wg_interface = "wg0";
    pubkey_port_mapping = {
      "SJ8xCRb4hWm5EnXoV4FnwgbiaxmY2wI+xzfk+3HXERg=" = [ 51827 51829 ];