From 3b25d7e0a90a6b0bcce42d63be0994bec9a32e71 Mon Sep 17 00:00:00 2001
From: Simon Bruder <simon@sbruder.de>
Date: Thu, 16 Apr 2020 02:25:08 +0000
Subject: [PATCH] docker: Enable IPv6 (with NAT)

---
 roles/docker/files/daemon.json  | 2 ++
 roles/docker/tasks/config.yml   | 3 +++
 roles/docker/tasks/packages.yml | 5 +++++
 3 files changed, 10 insertions(+)

diff --git a/roles/docker/files/daemon.json b/roles/docker/files/daemon.json
index 60057bd..96fa947 100644
--- a/roles/docker/files/daemon.json
+++ b/roles/docker/files/daemon.json
@@ -1,5 +1,7 @@
 {
   "log-driver": "journald",
+  "ipv6": true,
+  "fixed-cidr-v6": "fd00:d0ce:d0ce:d0ce::/64",
   "dns": [
     "46.182.19.48",
     "74.82.42.42"
diff --git a/roles/docker/tasks/config.yml b/roles/docker/tasks/config.yml
index bc8fddc..a402aca 100644
--- a/roles/docker/tasks/config.yml
+++ b/roles/docker/tasks/config.yml
@@ -1,4 +1,7 @@
 ---
+- name: Add IPv6 NAT iptables rules
+  shell: ip6tables -t nat -A POSTROUTING -s fd00:d0ce:d0ce:d0ce::/64 -j MASQUERADE && ip6tables-save > /etc/iptables/rules.v6
+
 - name: add docker configuration
   copy:
     dest: /etc/docker/daemon.json
diff --git a/roles/docker/tasks/packages.yml b/roles/docker/tasks/packages.yml
index 427190e..5bf324a 100644
--- a/roles/docker/tasks/packages.yml
+++ b/roles/docker/tasks/packages.yml
@@ -19,3 +19,8 @@
     name: docker-ce
     update_cache: yes
     state: present
+
+- name: install iptables-persistent
+  apt:
+    name: iptables-persistent
+    state: present