rebmit/nixos-config
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

networking/netns: allow unprivileged users to create icmp sockets

Browse source
This commit is contained in:
Lu Wang 2024-12-14 14:19:24 +08:00
parent 2f202aac57
commit aa251818a2
Signed by: rebmit
SSH key fingerprint: SHA256:3px8QV1zEerIrEWHaqtH5rR9kjetyRST5EipOPrd+bU
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
nixos/modules/networking/netns/common.nix
View file

@ -86,6 +86,7 @@ in
ip netns exec ${name} sysctl -w net.ipv4.conf.all.forwarding=${enableIPv4Forwarding}
ip netns exec ${name} sysctl -w net.ipv6.conf.default.forwarding=${enableIPv6Forwarding}
ip netns exec ${name} sysctl -w net.ipv6.conf.all.forwarding=${enableIPv6Forwarding}
ip netns exec ${name} sysctl -w net.ipv4.ping_group_range="0 2147483647"
${concatMapStringsSep "\n" (addr: "ip -n ${name} addr add ${addr} dev ${interface}") address}
'';
preStop = ''