From e81024033506b38297351c393b82e0bf2afdb67e Mon Sep 17 00:00:00 2001
From: Kjetil Orbekk <kj@orbekk.com>
Date: Tue, 30 Jan 2024 14:50:47 -0500
Subject: router /proc/sys workaround

---
 modules/router.nix | 16 ++++++++++++++++
 1 file changed, 16 insertions(+)

diff --git a/modules/router.nix b/modules/router.nix
index bc4a83f..e5d95c3 100644
--- a/modules/router.nix
+++ b/modules/router.nix
@@ -106,6 +106,22 @@ let
     }];
     systemd.services.he0-netdev.after = ["kjlan-netdev.service"];
 
+    systemd.timers.fix-proc-sys = {
+      wantedBy = ["multi-user.target"];
+      timerConfig = {
+        Persistent = true;
+        OnBootSec = "1m";
+        OnUnitActiveSec = "15m";
+      };
+    };
+    systemd.services.fix-proc-sys = {
+      description = "Remount /proc/sys as rw";
+      wantedBy = ["multi-user.target"];
+      script = ''
+        mount -o remount,rw /proc/sys
+      '';
+    };
+
     networking.iproute2.enable = true;
     networking.iproute2.rttablesExtraConfig = ''
       ${toString vpnMark} vpn
-- 
cgit v1.2.3