On 6/5/20 4:11 PM, PGNet Dev wrote: >> That rule will be wiped out the next time you 'shorewall6 reload' or
verified that to be the case moved all the wireguard-config ip(6)tables @remote rules to shorewall kept only the iproute rules in wireguard config @remote added a system override to wg0 systemd unit instances @remote & @local [Unit] Wants=shorewall-lite shorewall6-lite Before=shorewall-lite.target shorewall6-lite.target added an IPv6 snat rule for wg0 <-> external traffic @remote now, all IPv6 access from @remote, @local & @lan-behind-local is working as intended. thx 4 the ptrs! o/ _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
