diff --git a/dhcpcd.conf b/dhcpcd.conf index c83272a..50c71b1 100644 --- a/dhcpcd.conf +++ b/dhcpcd.conf @@ -22,6 +22,6 @@ interface wan0 ia_pd 1 lan0 interface lan0 - static ip_address=10.0.0.1/24 + static ip_address=10.0.0.1/8 static routers=10.0.0.1 static domain_name_servers=10.0.0.1 8.8.8.8 8.8.4.4 diff --git a/dnsmasq.conf b/dnsmasq.conf index f5209d4..1c7895b 100644 --- a/dnsmasq.conf +++ b/dnsmasq.conf @@ -3,6 +3,8 @@ bogus-priv enable-ra +dhcp-option=121,10.0.0.0/8,10.0.0.1 + dhcp-range=lan,10.0.0.5,10.0.0.250,255.255.255.0,10m dhcp-range=tag:lan0,::1,constructor:lan0,ra-names,12h @@ -12,14 +14,14 @@ dhcp-host=dragon,10.0.0.10,12h dhcp-host=faceless,10.0.0.210,12h dhcp-host=kubeworker3,10.0.0.244,2m +address=/.h.lyte.dev/10.0.0.210 + # dhcp-host=kubeworker3,d0:50:99:26:89:86,ourcraft,10.0.0.244,2m # address=/dragon.h.lyte.dev/10.0.0.10 # address=/git.lyte.dev/10.0.0.210 # address=/h.lyte.dev/10.0.0.210 # address=/a.lyte.dev/10.0.0.210 -# address=/.h.lyte.dev/10.0.0.210 -# address=/#.h.lyte.dev/10.0.0.210 # address=/bw.lyte.dev/10.0.0.210 # address=/files.lyte.dev/10.0.0.210 # address=/grafana.h.lyte.dev/10.0.0.210 diff --git a/etc-hosts b/etc-hosts index 69f74b1..278d74f 100644 --- a/etc-hosts +++ b/etc-hosts @@ -29,6 +29,9 @@ 10.0.0.210 video.h.lyte.dev 10.0.0.210 video.lyte.dev +10.0.0.154 kube-cluster.home.lyte.dev +10.0.0.81 kube-cluster.home.lyte.dev + 10.0.0.210 dmf.me 10.0.0.210 greenroof.house diff --git a/nftables.conf b/nftables.conf index f34333d..812cfba 100644 --- a/nftables.conf +++ b/nftables.conf @@ -13,7 +13,7 @@ table inet filter { ip protocol icmp accept meta l4proto ipv6-icmp accept # do these need ipv6-specific entries, too? - tcp dport { 51821, 22, 2201, 2221, 25565, 34197 } accept + tcp dport { 51821, 22, 53, 67, 2201, 2221, 25565, 34197 } accept udp dport { 51821, 51820, 53, 67, 34197 } accept udp dport { 60000-60009 } accept udp dport dhcpv6-client accept @@ -35,7 +35,7 @@ table ip nat { set masq_saddr { type ipv4_addr flags interval - elements = { 10.0.0.0/24 } + elements = { 10.0.0.0/8 } } map map_port_ipport { @@ -52,8 +52,13 @@ table ip nat { iifname $WAN udp dport 60010-60019 dnat to 10.0.0.210 # dragon + # iifname $WAN tcp dport { 2221, 5588, 5589 } dnat to 10.0.0.10 + # iifname $WAN udp dport 60020-60029 dnat to 10.0.0.10 + + # dragon reinstall? iifname $WAN tcp dport { 2221, 5588, 5589 } dnat to 10.0.0.10 iifname $WAN udp dport 60020-60029 dnat to 10.0.0.10 + iifname $WAN udp dport 9876-9877 dnat to 10.0.0.10 # ourcraft iifname $WAN tcp dport { 25565, 34197 } dnat to 10.0.0.244