SandW
/
openvpn-bosh-release
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
openvpn-bosh-release/deployment/with-lan-access.yml

23 lines
968 B
YAML
Raw Permalink Blame History

- path: /releases/name=networking?
type: replace
value:
name: networking
version: 9
url: http://bosh.io/d/github.com/cloudfoundry/networking-release?v=9
sha1: 9b5f9d27917c3754e492470ac6c9af80d62963db
- path: /instance_groups/name=openvpn/jobs/name=iptables?
type: replace
value:
name: iptables
release: networking
properties:
iptables:
filter:
FORWARD:
- -s ((vpn_network))/((vpn_network_mask_bits)) -d ((lan_network))/((lan_network_mask_bits)) -m conntrack --ctstate NEW -j ACCEPT -m comment --comment 'vpn -> lan'
- -s ((lan_network))/((lan_network_mask_bits)) -d ((vpn_network))/((vpn_network_mask_bits)) -m conntrack --ctstate NEW -j ACCEPT -m comment --comment 'lan -> vpn'
- -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
- path: /instance_groups/name=openvpn/jobs/name=openvpn/properties/push_routes?/-
type: replace
value: ((lan_network)) ((lan_network_mask))
Reference in New Issue View Git Blame Copy Permalink