From 50ee8138ea0e504cac5878ce891b5c2bc855d59e Mon Sep 17 00:00:00 2001
From: nyanloutre <paul@nyanlout.re>
Date: Thu, 22 Feb 2024 13:32:38 +0100
Subject: [PATCH 1/3] fix gitea for offline use

---
 systems/LoutreOS/configuration.nix | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/systems/LoutreOS/configuration.nix b/systems/LoutreOS/configuration.nix
index e9de815..56c7864 100644
--- a/systems/LoutreOS/configuration.nix
+++ b/systems/LoutreOS/configuration.nix
@@ -48,6 +48,10 @@
     hostName = "loutreos"; # Define your hostname.
     hostId = "7e66e347";
 
+    hosts = {
+      "127.0.0.1" = [ "gitea.nyanlout.re" ];
+    };
+
     useNetworkd = true;
     useDHCP = false;
 

From c3f141ae24382e06427d4ff98a3428f2c9d6ac0e Mon Sep 17 00:00:00 2001
From: nyanloutre <paul@nyanlout.re>
Date: Thu, 22 Feb 2024 13:33:11 +0100
Subject: [PATCH 2/3] remove PREROUTING rule first to prevent already existing
 rule error

---
 systems/LoutreOS/configuration.nix | 1 +
 1 file changed, 1 insertion(+)

diff --git a/systems/LoutreOS/configuration.nix b/systems/LoutreOS/configuration.nix
index 56c7864..b643360 100644
--- a/systems/LoutreOS/configuration.nix
+++ b/systems/LoutreOS/configuration.nix
@@ -118,6 +118,7 @@
 
         # Redirect local network request from server external IP to internal IP
         # Make the server available even without internet access
+        iptables -t nat -D PREROUTING -s 10.30.0.0/16 -d 176.180.172.105 -j DNAT --to 10.30.0.1 || true
         iptables -t nat -A PREROUTING -s 10.30.0.0/16 -d 176.180.172.105 -j DNAT --to 10.30.0.1
       '';
     };

From 5c05e540cbb7f4fa4676fb5e9743d6535f7b0b1e Mon Sep 17 00:00:00 2001
From: nyanloutre <paul@nyanlout.re>
Date: Thu, 22 Feb 2024 13:33:43 +0100
Subject: [PATCH 3/3] redirect SMTP port to VPS server as backup

---
 systems/LoutreOS/configuration.nix | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/systems/LoutreOS/configuration.nix b/systems/LoutreOS/configuration.nix
index b643360..77a4c9b 100644
--- a/systems/LoutreOS/configuration.nix
+++ b/systems/LoutreOS/configuration.nix
@@ -228,7 +228,18 @@
     };
   };
 
-  services.autossh.sessions = [ { extraArguments = "-N -R 0.0.0.0:2222:127.0.0.1:22 loutre@vps772619.ovh.net"; monitoringPort = 20000; name = "backup-ssh-reverse"; user = "autossh"; } ];
+  # Options explanations
+  # -N                              disable shell
+  # -R 0.0.0.0:2222:127.0.0.1:22    redirect SSH port on VPS server on port 2222
+  # -R 127.0.0.1:2525:127.0.0.1:25  redirect SMTP port on VPS port 2525
+  services.autossh.sessions = [
+    {
+      extraArguments = "-N -R 0.0.0.0:2222:127.0.0.1:22 -R 127.0.0.1:2525:127.0.0.1:25 loutre@vps772619.ovh.net";
+      monitoringPort = 20000;
+      name = "backup-ssh-reverse";
+      user = "autossh";
+    }
+  ];
 
   virtualisation.podman.enable = true;