Compare commits
3 Commits
46df8ec65c
...
5a08b3e0bd
Author | SHA1 | Date | |
---|---|---|---|
|
5a08b3e0bd | ||
|
acf4951047 | ||
|
9413f5dce8 |
@ -33,7 +33,7 @@ scrub in on $ext_if all fragment reassemble
|
||||
|
||||
# redirections
|
||||
nat on $ext_if inet from ! ($ext_if) to ! ($ext_if) -> ($ext_if)
|
||||
rdr pass proto {tcp, udp} from any to 10.215.1.1 port 53 tag REDIREXTERNAL -> 1.1.1.1 port 53
|
||||
rdr pass on jail_nat proto {tcp, udp} from any to 10.215.1.1 port 53 tag REDIREXTERNAL -> 1.1.1.1 port 53
|
||||
|
||||
rdr pass on $ext_if proto {tcp, udp} to ($ext_if) port 6443 -> 10.215.1.204 port 6443
|
||||
rdr pass on jail_nat proto {tcp, udp} to ($ext_if) port 6443 tag REDIRINTERNAL -> 10.215.1.204 port 6443
|
||||
@ -63,6 +63,7 @@ pass quick on $allow
|
||||
|
||||
# Single interface kubernetes cluster is working with the following run on mrmanager:
|
||||
# doas route add -host 74.80.180.139 -interface jail_nat
|
||||
# doas route add -net 10.129.0.0/16 -interface jail_nat
|
||||
# doas sysctl net.link.ether.inet.proxyall=1
|
||||
# Plus this in pf.conf:
|
||||
# pass quick from any to 74.80.180.139
|
||||
|
@ -1,5 +1,12 @@
|
||||
CPUTYPE?=broadwell
|
||||
|
||||
# CPU optimizations for go
|
||||
.if ${.CURDIR:M*/lang/go*}
|
||||
OPTIONS_SET+=V2
|
||||
OPTIONS_SET+=V3
|
||||
.endif
|
||||
|
||||
|
||||
# Disable static for subversion because /usr/local/lib/libutf8proc.a not found despite utf8proc being installed
|
||||
#
|
||||
# Disable static for netpbm because "ld: error: undefined symbol: libdeflate_free_compressor" which is "referenced by tif_zip.o:(ZIPVSetField) in archive /usr/local/lib/libtiff.a"
|
||||
|
Loading…
Reference in New Issue
Block a user