l 2 hfos: restart iptables after libvirtd restart

2017-03-10 15:35:24 +01:00 · 2017-03-10 15:35:24 +01:00 · 55c05c18c7
commit 55c05c18c7
parent 3b45f3f791
1 changed files with 8 additions and 1 deletions
--- a/lass/2configs/hfos.nix
+++ b/lass/2configs/hfos.nix
@ -36,5 +36,12 @@ with import <stockholm/lib>;
    { v6 = false; precedence = 1000; predicate = "-d 213.239.205.246 -p tcp --dport 443"; target = "DNAT --to-destination 192.168.122.208:1443"; }
  ];

-  systemd.services.krebs-iptables.after = [ "libvirtd.service" ];
+  # TODO use bridge interfaces instead of this crap
+  systemd.services.libvirtd.serviceConfig.ExecStartPost = let
+    restart-iptables = pkgs.writeDash "restart-iptables" ''
+      #soo hacky
+      ${pkgs.coreutils}/bin/sleep 1s
+      ${pkgs.systemd}/bin/systemctl restart krebs-iptables.service
+    '';
+  in restart-iptables;
 }