añadidos archivos de wireguard

2025-08-11 20:56:26 +02:00
parent bbe4ba89e2
commit 10f9bb67f7
16 changed files with 325 additions and 1 deletions
--- a/wireguard/daemonset/iptables-daemonset.yaml
+++ b/wireguard/daemonset/iptables-daemonset.yaml
@@ -0,0 +1,28 @@
+apiVersion: apps/v1
+kind: DaemonSet
+metadata:
+  name: wg-nat-rules
+  namespace: wireguard
+spec:
+  selector:
+    matchLabels:
+      app: wg-nat-rules
+  template:
+    metadata:
+      labels:
+        app: wg-nat-rules
+    spec:
+      hostNetwork: true
+      containers:
+      - name: iptables
+        image: alpine:latest
+        securityContext:
+          privileged: true
+        command:
+          - /bin/sh
+          - -c
+          - |
+            sysctl -w net.ipv4.ip_forward=1
+            iptables -t nat -C POSTROUTING -s 192.168.254.0/24 -d 192.168.0.0/24 -j MASQUERADE || iptables -t nat -A POSTROUTING -s 192.168.254.0/24 -d 192.168.0.0/24 -j MASQUERADE
+            iptables -t nat -C POSTROUTING -s 192.168.254.0/24 -d 10.42.0.0/16 -j MASQUERADE || iptables -t nat -A POSTROUTING -s 192.168.254.0/24 -d 10.42.0.0/16 -j MASQUERADE
+            sleep infinity