Skip to content

SlyngDK/dynport-server

BranchesTags

Repository files navigation

Dynamic Port Forward Server

This is a simple server receiving nat-pmp request for opening/forwarding ports in iptables. There is support for replication of leases between servers, when running HA firewall, and want the samme rules on both servers.

Usage

Usage:
  dynport-server [flags]

Flags:
      --acl-allow-default                default allow port mappings
  -c, --config string                    config file (default "config.yaml")
      --create-chains                    create required chains (default true)
  -d, --data-dir string                  director to use for storing data (default "/tmp/dynport")
      --ebpf-enabled                     use ebpf/xdp to bypass iptables
      --external-ip string               ip to report to client as external (default auto detect)
  -h, --help                             help for dynport-server
      --listen-addrs strings             addresses to listen on for nat-pmp requests, needs to be actual ip
      --log-format string                log format (plain/json) (default "json")
      --log-level string                 log level (default "INFO")
      --no-nat-cidr strings              dont nat these cidr (max 10)
      --port-range string                external port range to allocate from (default "10000-19999")
      --replication-listen-addr string   enable and listen for replication requests
      --replication-peers x.x.x.x:8080   peers to replicate with x.x.x.x:8080
      --skip-jump-check                  disable check of rule pointing to chains

Linux Capabilities required

  • cap_net_raw
  • cap_net_admin
  • cap_sys_admin

LimitMEMLOCK=30000000

About

No description or website provided.

Topics

nat-pmp port-forward

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 5

Support skip nat of outgoing connections Latest
Apr 16, 2024
+ 4 releases

Packages

No packages published

Languages