From 8d43a3c1d5d77fcf1b3a8db59003f6cc60a11017 Mon Sep 17 00:00:00 2001
From: Kjetil Orbekk <kj@orbekk.com>
Date: Sat, 2 Dec 2023 20:33:16 -0500
Subject: update

---
 modules/router.nix | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/modules/router.nix b/modules/router.nix
index 4d1b045..f9c960d 100644
--- a/modules/router.nix
+++ b/modules/router.nix
@@ -153,6 +153,7 @@ let
         dhcp-option=tag:servers-vport,option:dns-server,172.20.20.1
         dhcp-range=tag:servers-vport,::,static,constructor:servers-vport,5m
         dhcp-host=id:dragon,tag:servers-vport,172.20.20.2
+        dhcp-host=e2:27:e6:d7:f2:25,tag:servers-vport,172.20.20.2
         dhcp-host=id:00:01:00:01:21:a2:4e:a8:d0:bf:9c:45:a6:ec,tag:servers-vport,[::d]
         # dhcp-host=id:dragon,::d
 
@@ -203,6 +204,8 @@ let
             ct state {established, related} counter accept
             meta l4proto {tcp, udp} th dport {bootps, bootpc, domain, dhcpv6-client, dhcpv6-server, ${toString vpnPort}} counter accept
 
+            ip dport $SERVER_WAN_PORTS counter accept
+
             ip protocol ipv6 counter accept comment "sit tunnel"
             ip protocol icmp limit rate 4/second counter accept comment "icmp v4"
 
-- 
cgit v1.2.3