From 93584f339980a8024af20163061b84bae8392dd4 Mon Sep 17 00:00:00 2001
From: =?utf8?q?Felix=20D=C3=B6rre?= <felix@dogcraft.de>
Date: Mon, 2 Dec 2019 20:03:13 +0100
Subject: [PATCH] fix: accept dp to work with current gigi and others

- and add v6-dnat for hop-container

Change-Id: I80a3a765e66cd25b91be1983cf07bb5140d6ff73
---
 bootstrap-user                            |  1 +
 environments/production/manifests/root.pp | 10 ++++++++++
 2 files changed, 11 insertions(+)

diff --git a/bootstrap-user b/bootstrap-user
index d1bbaa5..f310d76 100755
--- a/bootstrap-user
+++ b/bootstrap-user
@@ -73,6 +73,7 @@ function register {
           --data-urlencode "regional=1" \
           --data-urlencode "radius=1" \
           --data-urlencode "tos_agree=1" \
+          --data-urlencode "dp_agree=1" \
           --data-urlencode "process=Weiter" \
           --data-urlencode "csrf=$csrf" > /dev/null
 }
diff --git a/environments/production/manifests/root.pp b/environments/production/manifests/root.pp
index 9adaee1..c193f9a 100644
--- a/environments/production/manifests/root.pp
+++ b/environments/production/manifests/root.pp
@@ -44,6 +44,16 @@ class my_fw::post {
     table => 'nat',
     chain => 'PREROUTING'
   } ->
+  firewall {'80 dnatv6-hop-ssh':
+    provider => 'ip6tables',
+    proto  => 'tcp',
+    dport => '2222',
+    jump => 'DNAT',
+    todest => "[${$ipsv6[hop]}]:22",
+    iniface => $internet_iface,
+    table => 'nat',
+    chain => 'PREROUTING'
+  } ->
   firewall {'80 MASQ-v6':
     provider => 'ip6tables',
     chain => 'POSTROUTING',
-- 
2.39.2