diff options
| author | Max Veytsman <maxim@ontoillogical.com> | 2019-11-03 22:20:49 -0500 |
|---|---|---|
| committer | Bjørn Forsman <bjorn.forsman@gmail.com> | 2019-11-04 17:00:22 +0100 |
| commit | de1cbcc69234d9301eb60bf8b074239f703f4d0e (patch) | |
| tree | f46eecb565aada40be69906a0b14ef3c02a97f0c /nixos/modules | |
| parent | 6f41b1c8428394ece43e0adcaa3d75044678d52c (diff) | |
| download | nixlib-de1cbcc69234d9301eb60bf8b074239f703f4d0e.tar nixlib-de1cbcc69234d9301eb60bf8b074239f703f4d0e.tar.gz nixlib-de1cbcc69234d9301eb60bf8b074239f703f4d0e.tar.bz2 nixlib-de1cbcc69234d9301eb60bf8b074239f703f4d0e.tar.lz nixlib-de1cbcc69234d9301eb60bf8b074239f703f4d0e.tar.xz nixlib-de1cbcc69234d9301eb60bf8b074239f703f4d0e.tar.zst nixlib-de1cbcc69234d9301eb60bf8b074239f703f4d0e.zip | |
nixos/nat: fix typo in comment
This iptables directive is marking packets coming from the internal interfaces so they can later be NATed by the rule in https://github.com/NixOS/nixpkgs/blob/22378e699682778075bcfb12cb6bf710261586f5/nixos/modules/services/networking/nat.nix#L38-L42 . Fix the comment accordingly.
Diffstat (limited to 'nixos/modules')
| -rw-r--r-- | nixos/modules/services/networking/nat.nix | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/nixos/modules/services/networking/nat.nix b/nixos/modules/services/networking/nat.nix index 89d8590093dd..5681bda51cb4 100644 --- a/nixos/modules/services/networking/nat.nix +++ b/nixos/modules/services/networking/nat.nix @@ -29,7 +29,7 @@ let iptables -w -t nat -N nixos-nat-post # We can't match on incoming interface in POSTROUTING, so - # mark packets coming from the external interfaces. + # mark packets coming from the internal interfaces. ${concatMapStrings (iface: '' iptables -w -t nat -A nixos-nat-pre \ -i '${iface}' -j MARK --set-mark 1 |