From aeba7c71e48d2d1b547e7c903fb9c1691f727c52 Mon Sep 17 00:00:00 2001
From: Patrick <patrick@failmail.dev>
Date: Tue, 31 Dec 2024 17:55:42 +0100
Subject: [PATCH] fix: disable nftables based mdns relay

---
 hosts/nucnix/forwarding.nix | 22 ----------------------
 1 file changed, 22 deletions(-)

diff --git a/hosts/nucnix/forwarding.nix b/hosts/nucnix/forwarding.nix
index 678772c..db6d6f0 100644
--- a/hosts/nucnix/forwarding.nix
+++ b/hosts/nucnix/forwarding.nix
@@ -82,26 +82,4 @@ mkMerge [
     ];
     protocol = "udp";
   })
-  {
-    networking.nftables.ruleset = ''
-      table ip mdns {
-        chain prerouting {
-            type filter hook prerouting priority mangle; policy accept;
-
-            iifname {lan-home, lan-services} ip daddr 224.0.0.251 meta mark 0xa5f3 jump mdns-saddr
-            iifname {lan-home, lan-services} ip daddr 224.0.0.251 meta mark != 0xa5f3 jump mdns
-        }
-        chain mdns {
-            meta mark set 0xa5f3
-            iifname lan-services dup to 224.0.0.251 device lan-home
-            iifname lan-home dup to 224.0.0.251 device lan-services
-        }
-        chain mdns-saddr {
-            # repeat mDNS from IoT to main
-            iifname lan-services ip saddr set 10.99.20.1
-            iifname lan-home ip saddr set 10.99.10.1
-        }
-      }
-    '';
-  }
 ]