l 2 hfos: restart iptables after libvirtd restart
This commit is contained in:
parent
3b45f3f791
commit
55c05c18c7
@ -36,5 +36,12 @@ with import <stockholm/lib>;
|
|||||||
{ v6 = false; precedence = 1000; predicate = "-d 213.239.205.246 -p tcp --dport 443"; target = "DNAT --to-destination 192.168.122.208:1443"; }
|
{ v6 = false; precedence = 1000; predicate = "-d 213.239.205.246 -p tcp --dport 443"; target = "DNAT --to-destination 192.168.122.208:1443"; }
|
||||||
];
|
];
|
||||||
|
|
||||||
systemd.services.krebs-iptables.after = [ "libvirtd.service" ];
|
# TODO use bridge interfaces instead of this crap
|
||||||
|
systemd.services.libvirtd.serviceConfig.ExecStartPost = let
|
||||||
|
restart-iptables = pkgs.writeDash "restart-iptables" ''
|
||||||
|
#soo hacky
|
||||||
|
${pkgs.coreutils}/bin/sleep 1s
|
||||||
|
${pkgs.systemd}/bin/systemctl restart krebs-iptables.service
|
||||||
|
'';
|
||||||
|
in restart-iptables;
|
||||||
}
|
}
|
||||||
|
Loading…
Reference in New Issue
Block a user