youwen/liminalOS
1
0
Fork 0
mirror of https://github.com/youwen5/liminalOS.git synced 2025-08-04 03:28:30 -07:00
Code Issues Projects Releases Packages Wiki Activity

feat: split tunnel THU TUNA mirror through mullvad

Browse source
This commit is contained in:
Youwen Wu 2025-07-25 13:09:23 +08:00
parent 13416e0aaf
commit 2d9888dd4e
1 changed files with 16 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

16
modules/linux/networking/default.nix
View file

@ -50,6 +50,22 @@ in
config = lib.mkIf cfg.enable { config = lib.mkIf cfg.enable {
services.openssh.enable = true; services.openssh.enable = true;
networking.nftables = {
enable = true;
ruleset = ''
define EXCLUDED_IPS = {
101.6.15.130
}
table inet excludeTraffic {
chain excludeOutgoing {
type route hook output priority 0; policy accept;
ip daddr $EXCLUDED_IPS ct mark set 0x00000f41 meta mark set 0x6d6f6c65;
}
}
'';
};
networking.firewall = { networking.firewall = {
enable = true; enable = true;
allowedTCPPorts = universalAllowedPorts; allowedTCPPorts = universalAllowedPorts;