From 24c2dc9efc4107c17d10ad578d0c144df106c6e6 Mon Sep 17 00:00:00 2001 From: Daniel Flanagan Date: Thu, 11 Jul 2024 16:17:33 +0000 Subject: [PATCH] Updates --- dnsmasq.conf | 3 ++- etc-hosts | 7 ++++++- nftables.conf | 39 ++++++++++++++------------------------- 3 files changed, 22 insertions(+), 27 deletions(-) diff --git a/dnsmasq.conf b/dnsmasq.conf index 59c4aab..5aa67d6 100755 --- a/dnsmasq.conf +++ b/dnsmasq.conf @@ -1,5 +1,5 @@ # server endpoints -listen-address=::1,127.0.0.1,192.168.0.1 +listen-address=::1,127.0.0.1,192.168.0.1,0.0.0.0 port=53 # DNS cache entries @@ -27,6 +27,7 @@ dhcp-range=tag:lan0,::1,constructor:lan0,ra-names,12h dhcp-host=dragon,192.168.0.10,12h dhcp-host=beefcake,192.168.0.9,12h +dhcp-host=bald,192.168.0.153,12h dhcp-host=chromebox,192.168.0.5,12h dhcp-host=B-C02G56VXML85,192.168.0.128,12h dhcp-host=B-W4KNHWJ6XY,192.168.0.217,12h diff --git a/etc-hosts b/etc-hosts index 32b98c2..6855a19 100755 --- a/etc-hosts +++ b/etc-hosts @@ -2,7 +2,7 @@ # See hosts(5) for details. 127.0.0.1 localhost -127.0.1.1 router.h.lyte.dev router +192.168.0.1 router.h.lyte.dev router ::1 localhost ip6-localhost ip6-loopback ff02::1 ip6-allnodes @@ -13,3 +13,8 @@ ff02::2 ip6-allrouters 192.168.0.9 files.lyte.dev 192.168.0.9 bw.lyte.dev 192.168.0.9 vpn.h.lyte.dev +192.168.0.9 nix.h.lyte.dev +192.168.0.9 a.lyte.dev +192.168.0.9 api.lyte.dev +192.168.0.9 ourcraft.lyte.dev +192.168.0.9 jland.lyte.dev diff --git a/nftables.conf b/nftables.conf index b94254b..87a9d44 100755 --- a/nftables.conf +++ b/nftables.conf @@ -12,9 +12,9 @@ table inet filter { ip protocol icmpv6 accept ip protocol icmp accept meta l4proto ipv6-icmp accept - # do these need ipv6-specific entries, too? - tcp dport { 64022, 10578, 51821, 51820, 22, 53, 67, 2201, 2221, 8448, 8008, 25565, 34197 } accept - udp dport { 64020, 10578, 51821, 51820, 22, 53, 67, 2201, 2221, 25565, 34197 } accept + tcp dport { 4022, 10578, 51821, 51820, 22, 53, 67, 2201, 2221, 8448, 8008, 25565, 26968, 26965, 34197, 27015, 27036 } accept + udp dport { 9876, 9877, 4020, 10578, 51821, 51820, 22, 53, 67, 2201, 2221, 25565, 26968, 26965, 34197 } accept + udp dport 27000-27100 accept udp dport { 60000-60009 } accept udp dport dhcpv6-client accept drop @@ -47,24 +47,6 @@ table ip nat { type nat hook prerouting priority dstnat + 1; policy accept; fib daddr type local dnat ip addr . port to meta l4proto . th dport map @map_port_ipport - # chromebox - # iifname $WAN tcp dport { 8008, 8448, 7777 } dnat to 192.168.0.5 - # iifname $WAN udp dport { 7777 } dnat to 192.168.0.5 - # iifname $WAN udp dport 60010-60019 dnat to 192.168.0.5 - - # old dragon? - # iifname $WAN tcp dport { 2221, 5588, 5589 } dnat to 192.168.0.10 - # iifname $WAN udp dport 60020-60029 dnat to 192.168.0.10 - - # iifname $WAN tcp dport { 10578, 5588, 5589 } dnat to 192.168.0.11 - # iifname $WAN udp dport { 10578 } dnat to 192.168.0.11 - - # dragon reinstall? - # iifname $WAN tcp dport { 2221, 5588, 5589 } dnat to 192.168.0.10 - # iifname $WAN udp dport { 2221, 5588, 5589 } dnat to 192.168.0.10 - # iifname $WAN udp dport 60020-60029 dnat to 192.168.0.10 - # iifname $WAN udp dport 9876-9877 dnat to 192.168.0.10 # valheim - # beefcake (ben access) iifname $WAN tcp dport { 64022 } dnat to 192.168.0.9 iifname $WAN udp dport { 64020 } dnat to 192.168.0.9 @@ -76,11 +58,18 @@ table ip nat { iifname $WAN tcp dport { 8022 } dnat to 192.168.0.248 # ourcraft - # iifname $WAN tcp dport { 2456, 2457, 25565, 34197 } dnat to 192.168.0.244 - # iifname $WAN udp dport { 2456, 2457, 25565, 34197 } dnat to 192.168.0.244 + iifname $WAN tcp dport { 2456, 2457, 25565, 34197 } dnat to 192.168.0.153 + iifname $WAN udp dport { 2456, 2457, 25565, 34197 } dnat to 192.168.0.153 - # jland - iifname $WAN tcp dport { 25565 } dnat to 192.168.0.10 + # jland and dawncraft + iifname $WAN tcp dport { 26968, 26965 } dnat to 192.168.0.9 + iifname $WAN udp dport { 26968, 26965 } dnat to 192.168.0.9 + + # v rising + iifname $WAN tcp dport { 27015, 27036 } dnat to 192.168.0.9 + iifname $WAN udp dport 9876-9877 dnat to 192.168.0.9 + iifname $WAN udp dport { 9876, 9877 } dnat to 192.168.0.9 + iifname $WAN udp dport 27000-27100 dnat to 192.168.0.9 # router iifname $WAN tcp dport { 2201 } dnat to 192.168.0.1