From 312e783cebbeda1807c76354bc6b03b3f70a29bb Mon Sep 17 00:00:00 2001
From: Karl Grube <karl@hudlergrube.com>
Date: Mon, 30 Oct 2023 13:33:30 +0100
Subject: [PATCH] nat support working

---
 templates/frr_conf.j2 | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/templates/frr_conf.j2 b/templates/frr_conf.j2
index f1685e7..ef3e679 100644
--- a/templates/frr_conf.j2
+++ b/templates/frr_conf.j2
@@ -68,6 +68,9 @@ router bgp {{bgp_asn}}
 !
  address-family ipv6 unicast
   network ::/0
+  neighbor nat activate
+  neighbor nat prefix-list internet out
+  neighbor nat prefix-list none in
   neighbor firewalls activate
   neighbor firewalls prefix-list all out
   neighbor firewalls prefix-list my-networks in
@@ -81,6 +84,7 @@ router bgp {{bgp_asn}}
 {%   endfor %}
 {% endfor %}
 !
+ipv6 prefix-list none seq 10 deny any
 {% if allow_default_ipv6 == True %}
 ipv6 prefix-list internet seq 5 permit ::/0
 {% endif %}
@@ -137,6 +141,7 @@ ipv6 prefix-list my-networks seq {{(loop.index|int)*10+10}} deny any
 {%   endif %}
 {% endfor %}
 !
+ip prefix-list none seq 10 deny any
 {% if allow_default_ipv4 == True %}
 ip prefix-list internet seq 5 permit 0.0.0.0/0
 {% endif %}
-- 
GitLab