| Age | Commit message (Collapse) | Author |
|---|
|
Enable nft. Use different nft config for ns0. Host open emails port. ns0
open wireguard and qbt ports. ns0 configure wireguard. host not
configure wiregurad, so also no need ip forwarding sysctl kernel
parameters. ns0 use /etc/netns/ns0/nftables.conf that will bind mount to
ns0.
Host and ns0 both run dnsmasq for dns cache. ns0 dnsmasq I disable dbus
because it will conficts with host dnsmasq dbus. Dnsmasq use dbus for
config cahnge?
I disable systemd-resolved and switch to dnsmasq because
systemd-resolved use dbus for dns query? which is maybe easy for dns
leak, e.g., when systemd-resolved is only running on host, ns0 with
different /etc/resolv.conf still get dns from host open public ip when
run resolvectl query, although drill does not leak.
sye add enabled systemd units
|
|
|
|
Combine ca into ia to become new ib VPS.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
/etc/.cfgl/config chagne to ia branch
/etc/hostname change to xyzia hostname
/etc/myconf/cfgl_meta change changed file meta
/etc/systemd/network/default.network use ia network config instead
/etc/systemd/system/paccache.service.d/10-remove-all.conf use pp config to save space on SSD root partition
/home/xyz/.bashrc use another color for bash PS1
/home/xyz/.config/myconf/pacman_Qqne less package to install, to save space
|
|
|
|
|
|
|
|
|
|
cache
|
|
remove `BindsTo=mullvad-daemon.service`
|
