ansible-edda/plays/vpn/roles/wireguard/templates/post-up-wg0-ipv4.nft.j2

#!/usr/bin/env -S nft -f

table ip wg0_ipv4 {

{% if vpn_wireguard_role == "server" %}
        chain postrouting {
                type nat hook postrouting priority 100;
                iif wg0 oif {{ ansible_default_ipv4.interface }} masquerade;
        }

{% endif %}
}
Make VPN configuration more robust 2022-09-25 16:00:40 +02:00			`#!/usr/bin/env -S nft -f`

			`table ip wg0_ipv4 {`
Add vpn:bridge:wg0 2022-12-09 01:16:00 +01:00
Split bridge and wireguard into separate roles 2022-12-09 22:45:58 +01:00			`{% if vpn_wireguard_role == "server" %}`
Make VPN configuration more robust 2022-09-25 16:00:40 +02:00			`chain postrouting {`
			`type nat hook postrouting priority 100;`
Add vpn:bridge:wg0 2022-12-09 01:16:00 +01:00			`iif wg0 oif {{ ansible_default_ipv4.interface }} masquerade;`
Make VPN configuration more robust 2022-09-25 16:00:40 +02:00			`}`
Add vpn:bridge:wg0 2022-12-09 01:16:00 +01:00
			`{% endif %}`
Make VPN configuration more robust 2022-09-25 16:00:40 +02:00			`}`