0.0.0.0/0 issues
# clientr
rich-smartphone-65828
05/23/2023, 5:57 AMtryed adding another node and using that as ingress just incase routes where funky on the docker node but nope as soon as egress gateway is added with 0.0.0.0/0 all internet traffic dies
https://cdn.discordapp.com/attachments/975815737207824444/1110446299528052786/image.png▾
j
jolly-london-20127
05/23/2023, 9:10 PM@rich-smartphone-65828 can you tell me if /etc/netclient/netmaker.conf exists on both machines and contains the 0.0.0.0/0 allowedips on the non-egress machine?
r
rich-smartphone-65828
05/24/2023, 7:21 PMiirc wireguard needs 0.0.0.0/0 in the allowed range for it to forward and accept from that range?
rich-smartphone-65828
05/24/2023, 7:24 PMone sec
rich-smartphone-65828
05/24/2023, 7:27 PMyes 0.0.0.0/0 is added to the egress gateway peer in workstation
rich-smartphone-65828
05/24/2023, 7:30 PMdefault routes dont look set by netclient
jugganuts@workstation ~ ip route
default via 192.168.1.1 dev enp4s0f0np0 proto dhcp src 192.168.1.208 metric 100
10.33.124.0/24 dev netmaker proto kernel scope link src 10.33.124.2
152.117.116.12 via 192.168.1.1 dev enp4s0f0np0
185.213.174.25 via 192.168.1.1 dev enp4s0f0np0
185.213.174.174 via 192.168.1.1 dev enp4s0f0np0
192.168.1.0/24 dev enp4s0f0np0 proto kernel scope link src 192.168.1.208 metric 100
rich-smartphone-65828
05/24/2023, 7:32 PMjugganuts@workstation ~ sudo iptables -t nat -L
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
LIBVIRT_PRT all -- anywhere anywhere
Chain LIBVIRT_PRT (1 references)
target prot opt source destination
RETURN all -- 192.168.122.0/24 base-address.mcast.net/24
RETURN all -- 192.168.122.0/24 255.255.255.255
MASQUERADE tcp -- 192.168.122.0/24 !192.168.122.0/24 masq ports: 1024-65535
MASQUERADE udp -- 192.168.122.0/24 !192.168.122.0/24 masq ports: 1024-65535
MASQUERADE all -- 192.168.122.0/24 !192.168.122.0/24
rich-smartphone-65828
05/24/2023, 7:38 PMrich-smartphone-65828
05/24/2023, 7:38 PMrich-smartphone-65828
05/24/2023, 7:39 PMIll be wiping this instance so keys will get regen so im not worryed about that atm
rich-smartphone-65828
05/26/2023, 4:57 PM@jolly-london-20127
any ideas or updates or anything?
rich-smartphone-65828
05/26/2023, 4:58 PMI would like to use this for production of my company but unless things start working or communication happens I'm prolly gonna move on.
3 Views