Hostux/NAT-rules-fixed-IPv4-provider
1
0
Fork 0
Code Issues 1 Pull requests Projects Releases Packages Wiki Activity

added SNAT to use the correct outgoing IP address from Oracle depending on the WireGuard host

Browse source
This commit is contained in:
Oracle Public Cloud User 2024-02-15 09:32:45 +00:00
parent c00468eaea
commit f0542a25c1
1 changed files with 12 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
configure_NAT_from_RULES
View file

@ -76,6 +76,18 @@ for rule in "${RULES[@]}"; do
esac esac
done done
case "$action" in
"up")
firewall-cmd --permanent --direct --add-rule ipv4 nat POSTROUTING 0 -o "$INTERFACE_SOURCE" -s "$FORWARD_TO_IP" -j SNAT --to-source "$ORIGINAL_DESTINATION_IP"
;;
"down")
firewall-cmd --permanent --direct --remove-rule ipv4 nat POSTROUTING 0 -o "$INTERFACE_SOURCE" -s "$FORWARD_TO_IP" -j SNAT --to-source "$ORIGINAL_DESTINATION_IP"
;;
*)
echo "Invalid action. Use 'up' or 'down'."
exit 1
;;
firewall-cmd --reload > /dev/null firewall-cmd --reload > /dev/null
echo -e "\nDone! Don't forget to add/remove the rules in the security list." echo -e "\nDone! Don't forget to add/remove the rules in the security list."