poseidon/docs/resources/secure-bridge.conflist

{
    "cniVersion": "0.4.0",
    "name": "secure-bridge",
    "plugins": [
        {
            "type": "loopback"
        },
        {
            "type": "bridge",
            "bridge": "nomad-filtered",
            "ipMasq": true,
            "isGateway": true,
            "forceAddress": true,
            "dns":{
                "nameservers":[
                    "8.8.8.8",
                    "8.8.4.4",
                    "2001:4860:4860::8888",
                    "2001:4860:4860::8844"
                ],
                "domain": "poseidon.internal",
                "search": [
                    "poseidon.internal"
                ]
            },
            "ipam": {
                "type": "host-local",
                "ranges": [
                    [
                        {
                            "subnet": "10.151.16.0/20"
                        }
                    ],
                    [
                        {
                            "subnet": "fd00:2::/64"
                        }
                    ]
                ],
                "routes": [
                   { "dst": "0.0.0.0/5" },
                   { "dst": "8.0.0.0/7" },
                   { "dst": "11.0.0.0/8" },
                   { "dst": "12.0.0.0/6" },
                   { "dst": "16.0.0.0/4" },
                   { "dst": "32.0.0.0/3" },
                   { "dst": "64.0.0.0/2" },
                   { "dst": "128.0.0.0/3" },
                   { "dst": "160.0.0.0/5" },
                   { "dst": "168.0.0.0/8" },
                   { "dst": "169.0.0.0/9" },
                   { "dst": "169.128.0.0/10" },
                   { "dst": "169.192.0.0/11" },
                   { "dst": "169.224.0.0/12" },
                   { "dst": "169.240.0.0/13" },
                   { "dst": "169.248.0.0/14" },
                   { "dst": "169.252.0.0/15" },
                   { "dst": "169.255.0.0/16" },
                   { "dst": "170.0.0.0/8" },
                   { "dst": "171.0.0.0/12" },
                   { "dst": "171.32.0.0/11" },
                   { "dst": "171.64.0.0/10" },
                   { "dst": "171.128.0.0/9" },
                   { "dst": "172.0.0.0/6" },
                   { "dst": "176.0.0.0/4" },
                   { "dst": "192.0.0.0/9" },
                   { "dst": "192.128.0.0/11" },
                   { "dst": "192.160.0.0/13" },
                   { "dst": "192.169.0.0/16" },
                   { "dst": "192.170.0.0/15" },
                   { "dst": "192.172.0.0/14" },
                   { "dst": "192.176.0.0/12" },
                   { "dst": "192.192.0.0/10" },
                   { "dst": "193.0.0.0/8" },
                   { "dst": "194.0.0.0/7" },
                   { "dst": "196.0.0.0/6" },
                   { "dst": "200.0.0.0/5" },
                   { "dst": "208.0.0.0/4" },
                   { "dst": "224.0.0.0/3" },
                   { "dst": "::/1" },
                   { "dst": "8000::/2" },
                   { "dst": "c000::/3" },
                   { "dst": "e000::/4" },
                   { "dst": "f000::/5" },
                   { "dst": "f800::/6" },
                   { "dst": "fe00::/9" },
                   { "dst": "fec0::/10" },
                   { "dst": "ff00::/8" }
                ]
            }
        },
        {
            "type": "firewall",
            "backend": "iptables",
            "iptablesAdminChainName": "NOMAD-ADMIN-FILTERED"
        },
        {
            "type": "portmap",
            "capabilities": {
                "portMappings": true
            },
            "snat": true
        }
    ]
}