I was looking at the NAT settings for NixOS and realized that you needed the add extra iptables commands to the firewall to be able to do NAT.
I cannot seem to find a reason on the issues and pull requests mentioning the module to why this wasn’t implemented in the firewall module directly when you enable the networking NAT option.
Is there a particular reason why this is not possible ? If not, I’d like to start working on a pull request to add the iptable rules directly when using NAT.
What do you think?