Setup routing and NAT/masquerade firewall

author: Lars Wirzenius <liw@liw.fi> 2016-09-06 15:20:47 +0300
committer: Lars Wirzenius <liw@liw.fi> 2016-09-06 15:20:47 +0300
commit: 8fe447d46c56fb648bf2c1f34fedae47dbbaee2f (patch)
tree: d6137159b4aa954df1a36dbb11690056a40655ce /ansible/roles/router/tasks/main.yml
parent: ac0ac75ff26e7bc4d5cc09a510652c0890d053ba (diff)
download: minipc-router-8fe447d46c56fb648bf2c1f34fedae47dbbaee2f.tar.gz
1 files changed, 13 insertions, 0 deletions
diff --git a/ansible/roles/router/tasks/main.yml b/ansible/roles/router/tasks/main.yml
new file mode 100644
index 0000000..6b76440
--- /dev/null
+++ b/ansible/roles/router/tasks/main.yml
@@ -0,0 +1,13 @@
+- name: add iptables masquerading rule
+  copy:
+    src: setup-firewall
+    dest: /usr/local/sbin/setup-firewall
+    mode: 0755
+
+- name: set up packet forwarding sysctl config
+  copy:
+    src: enable-routing.conf
+    dest: /etc/sysctl.d
+
+- name: load sysctl config change
+  shell: sysctl -p /etc/sysctl.d/enable-routing.conf
author	Lars Wirzenius <liw@liw.fi>	2016-09-06 15:20:47 +0300
committer	Lars Wirzenius <liw@liw.fi>	2016-09-06 15:20:47 +0300
commit	8fe447d46c56fb648bf2c1f34fedae47dbbaee2f (patch)
tree	d6137159b4aa954df1a36dbb11690056a40655ce /ansible/roles/router/tasks/main.yml
parent	ac0ac75ff26e7bc4d5cc09a510652c0890d053ba (diff)
download	minipc-router-8fe447d46c56fb648bf2c1f34fedae47dbbaee2f.tar.gz