From bfda2b628bf813f9770a01a6ecd08ae066e64cda Mon Sep 17 00:00:00 2001
From: Ben Vincent <ben@unkin.net>
Date: Mon, 21 Apr 2025 18:40:17 +1000
Subject: [PATCH] feat: enable ip forwarding for gitea runners (#253)

- required to enable docker containers reach git service

Reviewed-on: https://git.query.consul/unkinben/puppet-prod/pulls/253
---
 hieradata/roles/infra/git/runner.yaml | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/hieradata/roles/infra/git/runner.yaml b/hieradata/roles/infra/git/runner.yaml
index f94954f..851c6df 100644
--- a/hieradata/roles/infra/git/runner.yaml
+++ b/hieradata/roles/infra/git/runner.yaml
@@ -45,3 +45,10 @@ profiles::gitea::runner::config:
     force_rebuild: false
   host:
     workdir_parent: "%{hiera('profiles::gitea::runner::home')}/.cache/act"
+
+# enable ip forwarding for docker containers
+sysctl::base::values:
+  net.ipv4.conf.all.forwarding:
+    value: '1'
+  net.ipv6.conf.all.forwarding:
+    value: '1'