diff --git a/tinc/tinc-down.tmpl b/tinc/tinc-down.tmpl index 3449513..7c60018 100644 --- a/tinc/tinc-down.tmpl +++ b/tinc/tinc-down.tmpl @@ -1,11 +1,11 @@ #!/bin/sh {{ if len "${ip_aliases:-}" }}{{ range "$ip_aliases" | split "," }}iptables -t nat -D PREROUTING -d {{ . }} -i \$INTERFACE -j DNAT --to-destination ${tinc_peer_address} -iptables -t nat -D PREROUTING -d {{ . }} -i ${internal_interface:-eth0} -j DNAT --to-destination ${tinc_peer_address} +iptables -t nat -D PREROUTING -d {{ . }} -i eth0 -j DNAT --to-destination ${tinc_peer_address} {{ end }}{{ end }} # Disable IPv4 kernel routing/forwarding for this network iptables -D FORWARD -o \$INTERFACE -d ${network_address}/${global_prefix:-16} -j ACCEPT -{{ if len "${bgp_routes:-}" }}{{ range "$bgp_routes" | split "," }}iptables -D FORWARD -o ${internal_interface:-eth0} -d {{.}} -j ACCEPT +{{ if len "${bgp_routes:-}" }}{{ range "$bgp_routes" | split "," }}iptables -D FORWARD -o eth0 -d {{.}} -j ACCEPT {{ end }}{{ end }} # Prevent spoofing attacks