surtr: ...

author: Gregor Kleen <gkleen@yggdrasil.li> 2022-05-19 22:05:02 +0200
committer: Gregor Kleen <gkleen@yggdrasil.li> 2022-05-19 22:05:02 +0200
commit: 84f2affd66a0ff3947b91a30308cb8e6a8ff7594 (patch)
tree: 4b05057b68ef6c9e8766b80927221b360d13d167 /hosts/sif/ruleset.nft
parent: 8f0bf6945a24ea8dac4e8395461bb92f22ab71a0 (diff)
download: nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar
nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar.gz
nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar.bz2
nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar.xz
nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/hosts/sif/ruleset.nft b/hosts/sif/ruleset.nft
index c453cc7b..363ffbdc 100644
--- a/hosts/sif/ruleset.nft
+++ b/hosts/sif/ruleset.nft
@@ -118,7 +118,7 @@ table inet filter {
    meta l4proto $icmp_protos counter name icmp-rx accept
    tcp dport 22 counter name ssh-rx accept
-    udp dport 60001-61000 counter name mosh-rx accept
+    udp dport 60000-61000 counter name mosh-rx accept
    tcp dport 8000 counter name quickserve-rx accept
@@ -146,7 +146,7 @@ table inet filter {
    tcp sport 22 counter name ssh-tx
-    udp sport 60001-61000 counter name mosh-tx
+    udp sport 60000-61000 counter name mosh-tx
    udp sport 51820-51822 counter name wg-tx
    iifname "yggdrasil-wg-*" meta l4proto gre counter name yggdrasil-gre-tx
author	Gregor Kleen <gkleen@yggdrasil.li>	2022-05-19 22:05:02 +0200
committer	Gregor Kleen <gkleen@yggdrasil.li>	2022-05-19 22:05:02 +0200
commit	84f2affd66a0ff3947b91a30308cb8e6a8ff7594 (patch)
tree	4b05057b68ef6c9e8766b80927221b360d13d167 /hosts/sif/ruleset.nft
parent	8f0bf6945a24ea8dac4e8395461bb92f22ab71a0 (diff)
download	nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar.gz nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar.bz2 nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar.xz nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.zip

diff --git a/hosts/sif/ruleset.nft b/hosts/sif/ruleset.nft index c453cc7b..363ffbdc 100644 --- a/hosts/sif/ruleset.nft +++ b/hosts/sif/ruleset.nft
@@ -118,7 +118,7 @@ table inet filter {
118	meta l4proto $icmp_protos counter name icmp-rx accept	118	meta l4proto $icmp_protos counter name icmp-rx accept
119		119
120	tcp dport 22 counter name ssh-rx accept	120	tcp dport 22 counter name ssh-rx accept
121	udp dport 60001-61000 counter name mosh-rx accept	121	udp dport 60000-61000 counter name mosh-rx accept
122		122
123	tcp dport 8000 counter name quickserve-rx accept	123	tcp dport 8000 counter name quickserve-rx accept
124		124
@@ -146,7 +146,7 @@ table inet filter {
146		146
147		147
148	tcp sport 22 counter name ssh-tx	148	tcp sport 22 counter name ssh-tx
149	udp sport 60001-61000 counter name mosh-tx	149	udp sport 60000-61000 counter name mosh-tx
150		150
151	udp sport 51820-51822 counter name wg-tx	151	udp sport 51820-51822 counter name wg-tx
152	iifname "yggdrasil-wg-*" meta l4proto gre counter name yggdrasil-gre-tx	152	iifname "yggdrasil-wg-*" meta l4proto gre counter name yggdrasil-gre-tx