Skip to content

Commit

Permalink
fixed route conflict problem
Browse files Browse the repository at this point in the history
  • Loading branch information
@PandaRyshan
PandaRyshan committed Jun 7, 2024
1 parent 7d5b0fe commit 12e9cf4
Showing 1 changed file with 2 additions and 6 deletions.
8 changes: 2 additions & 6 deletions docker-entrypoint.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -59,8 +59,7 @@ if [[ ! -f "/etc/ocserv/ocserv.conf" ]]; then
ipv6-network = 2001:db8:2::/64
ipv6-subnet-prefix = 112
route = 172.20.0.0/24
route = 2001:db8:2::/64
route = default
no-route = 10.0.0.0/8
no-route = 100.64.0.0/10
no-route = 169.254.0.0/16
Expand Down Expand Up @@ -243,11 +242,8 @@ fi
# iptables -t nat -A POSTROUTING -s 172.20.0.0/24 -j SNAT --to-source $(hostname -I)
iptables -t nat -A POSTROUTING -s 172.20.0.0/24 -j MASQUERADE
ip6tables -t nat -A POSTROUTING -s 2001:db8:2::/64 -j MASQUERADE
iptables -I FORWARD -s 172.20.0.0/24 -j ACCEPT
iptables -I FORWARD -d 172.20.0.0/24 -j ACCEPT
ip6tables -I FORWARD -s 2001:db8:2::/64 -j ACCEPT
ip6tables -I FORWARD -d 2001:db8:2::/64 -j ACCEPT
iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
ip6tables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu

# Enable TUN device
mkdir -p /dev/net
Expand Down

0 comments on commit 12e9cf4

Please sign in to comment.