colin/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

networking.greTunnels: support ip6gre*

Browse Source
This commit is contained in:
jpathy 2022-03-16 11:18:15 +05:30 committed by Jiten Kumar Pathy
parent 350731a856
commit 0a62de4cd5
2 changed files with 44 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
nixos/modules/tasks/network-interfaces.nix
View File

@ -1021,6 +1021,12 @@ in
dev = "enp4s0f0";
type = "tap";
};
gre6Tunnel = {
remote = "fd7a:5634::1";
local = "fd7a:5634::2";
dev = "enp4s0f0";
type = "tun6";
};
}
'';
description = ''
@ -1058,10 +1064,15 @@ in
};
type = mkOption {
type = with types; enum [ "tun" "tap" ];
type = with types; enum [ "tun" "tap" "tun6" "tap6" ];
default = "tap";
example = "tap";
apply = v: if v == "tun" then "gre" else "gretap";
apply = v: {
tun = "gre";
tap = "gretap";
tun6 = "ip6gre";
tap6 = "ip6gretap";
}.${v};
description = ''
Whether the tunnel routes layer 2 (tap) or layer 3 (tun) traffic.
'';

33
nixos/tests/networking.nix
View File

@ -498,6 +498,7 @@ let
networking = {
useNetworkd = networkd;
useDHCP = false;
firewall.extraCommands = "ip6tables -A nixos-fw -p gre -j nixos-fw-accept";
};
};
in {
@ -506,7 +507,7 @@ let
mkMerge [
(node args)
{
virtualisation.vlans = [ 1 2 ];
virtualisation.vlans = [ 1 2 4 ];
networking = {
greTunnels = {
greTunnel = {
@ -515,12 +516,24 @@ let
dev = "eth2";
type = "tap";
};
gre6Tunnel = {
local = "fd00:1234:5678:4::1";
remote = "fd00:1234:5678:4::2";
dev = "eth3";
type = "tun6";
};
};
bridges.bridge.interfaces = [ "greTunnel" "eth1" ];
interfaces.eth1.ipv4.addresses = mkOverride 0 [];
interfaces.bridge.ipv4.addresses = mkOverride 0 [
{ address = "192.168.1.1"; prefixLength = 24; }
];
interfaces.eth3.ipv6.addresses = [
{ address = "fd00:1234:5678:4::1"; prefixLength = 64; }
];
interfaces.gre6Tunnel.ipv6.addresses = mkOverride 0 [
{ address = "fc00::1"; prefixLength = 64; }
];
};
}
];
@ -528,7 +541,7 @@ let
mkMerge [
(node args)
{
virtualisation.vlans = [ 2 3 ];
virtualisation.vlans = [ 2 3 4 ];
networking = {
greTunnels = {
greTunnel = {
@ -537,12 +550,24 @@ let
dev = "eth1";
type = "tap";
};
gre6Tunnel = {
local = "fd00:1234:5678:4::2";
remote = "fd00:1234:5678:4::1";
dev = "eth3";
type = "tun6";
};
};
bridges.bridge.interfaces = [ "greTunnel" "eth2" ];
interfaces.eth2.ipv4.addresses = mkOverride 0 [];
interfaces.bridge.ipv4.addresses = mkOverride 0 [
{ address = "192.168.1.2"; prefixLength = 24; }
];
interfaces.eth3.ipv6.addresses = [
{ address = "fd00:1234:5678:4::2"; prefixLength = 64; }
];
interfaces.gre6Tunnel.ipv6.addresses = mkOverride 0 [
{ address = "fc00::2"; prefixLength = 64; }
];
};
}
];
@ -562,6 +587,10 @@ let
client1.wait_until_succeeds("ping -c 1 192.168.1.2")
client2.wait_until_succeeds("ping -c 1 192.168.1.1")
client1.wait_until_succeeds("ping -c 1 fc00::2")
client2.wait_until_succeeds("ping -c 1 fc00::1")
'';
};
vlan = let