Lumpiasty/klaster
0
0
Fork 0
Code Issues Pull Requests 2 Packages Projects Releases Wiki Activity

hairpin nat cluster

Browse Source
This commit is contained in:
Lumpiasty
2026-05-31 03:14:46 +02:00
parent 8c8147176d
commit 62f6baf948
1 changed files with 10 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
ansible/roles/routeros/tasks/firewall.yml
+10
View File
@@ -43,6 +43,11 @@
comment: Allow from SRV to internet comment: Allow from SRV to internet
in-interface: vlan4 in-interface: vlan4
out-interface-list: wan out-interface-list: wan
- action: accept
chain: forward
comment: Allow from SRV to SRV
in-interface: vlan4
out-interface: vlan4
- action: accept - action: accept
chain: forward chain: forward
comment: Allow from SRV to CAM comment: Allow from SRV to CAM
@@ -277,6 +282,11 @@
in-interface: '!pppoe-gpon' in-interface: '!pppoe-gpon'
protocol: tcp protocol: tcp
to-addresses: 128.0.70.5 to-addresses: 128.0.70.5
- action: masquerade
chain: srcnat
comment: hairpin to LoadBalancer pool (vlan4 -> vlan4)
dst-address: 10.44.0.0/16
in-interface: vlan4
- action: dst-nat - action: dst-nat
chain: dstnat chain: dstnat
comment: HTTPS comment: HTTPS