From 4b3c971a12967e7244ff32ea23e33406c34f2004 Mon Sep 17 00:00:00 2001
From: Tigor Hutasuhut <tigor.hutasuhut@gmail.com>
Date: Fri, 14 Jun 2024 16:44:08 +0700
Subject: [PATCH] openvpn: enabled IP forwarding

---
 system/services/openvpn.nix | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/system/services/openvpn.nix b/system/services/openvpn.nix
index 0ac0bf6..948b52f 100644
--- a/system/services/openvpn.nix
+++ b/system/services/openvpn.nix
@@ -21,6 +21,9 @@ in
   config = mkIf cfg.enable {
     environment.systemPackages = [ pkgs.openvpn ]; # To generate keys with openvpn --genkey --secret <name>.key
 
+    # Enable IP forwarding to allow the VPN to act as a gateway.
+    boot.kernel.sysctl."net.ipv4.ip_forward" = 1;
+
     networking.nat = {
       enable = true;
       inherit externalInterface;