diff options
| author | Gregor Kleen <gkleen@yggdrasil.li> | 2021-12-09 15:44:57 +0100 |
|---|---|---|
| committer | Gregor Kleen <gkleen@yggdrasil.li> | 2021-12-09 15:44:57 +0100 |
| commit | 52e04e798679f0bc448b1df6b87435db43d3def2 (patch) | |
| tree | 8fa90abf099a5378947a6eeb21c8b5cf02af5ce0 | |
| parent | a830cea88a47ac24cfd3b8ad8a26562093aff84d (diff) | |
| download | nixos-52e04e798679f0bc448b1df6b87435db43d3def2.tar nixos-52e04e798679f0bc448b1df6b87435db43d3def2.tar.gz nixos-52e04e798679f0bc448b1df6b87435db43d3def2.tar.bz2 nixos-52e04e798679f0bc448b1df6b87435db43d3def2.tar.xz nixos-52e04e798679f0bc448b1df6b87435db43d3def2.zip | |
vidhar: nftables...
| -rw-r--r-- | hosts/vidhar/ruleset.nft | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/hosts/vidhar/ruleset.nft b/hosts/vidhar/ruleset.nft index 9b91141f..3d4d1bb0 100644 --- a/hosts/vidhar/ruleset.nft +++ b/hosts/vidhar/ruleset.nft | |||
| @@ -52,10 +52,10 @@ table inet filter { | |||
| 52 | 52 | ||
| 53 | iifname lo counter accept | 53 | iifname lo counter accept |
| 54 | 54 | ||
| 55 | oifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop | ||
| 56 | oifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop | 55 | oifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop |
| 57 | iifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop | ||
| 58 | iifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop | 56 | iifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop |
| 57 | oifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop | ||
| 58 | iifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop | ||
| 59 | meta l4proto $icmp_protos counter accept | 59 | meta l4proto $icmp_protos counter accept |
| 60 | 60 | ||
| 61 | iifname eno1 oifname dsl counter accept | 61 | iifname eno1 oifname dsl counter accept |
| @@ -113,8 +113,8 @@ table inet filter { | |||
| 113 | 113 | ||
| 114 | oifname lo counter accept | 114 | oifname lo counter accept |
| 115 | 115 | ||
| 116 | oifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop | ||
| 117 | oifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop | 116 | oifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop |
| 117 | oifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop | ||
| 118 | meta l4proto $icmp_protos counter accept | 118 | meta l4proto $icmp_protos counter accept |
| 119 | 119 | ||
| 120 | 120 | ||