diff options
| author | Gregor Kleen <gkleen@yggdrasil.li> | 2022-05-05 19:13:41 +0200 |
|---|---|---|
| committer | Gregor Kleen <gkleen@yggdrasil.li> | 2022-05-05 19:13:41 +0200 |
| commit | aefbe2d5a0cd10daa555433b14230ede07225372 (patch) | |
| tree | 4a6d082ec4a973f8e2be7d645a8a16948fdf05d0 /hosts/surtr/ruleset.nft | |
| parent | 845d0340201db81e6c605537ef27ed13f946d892 (diff) | |
| download | nixos-aefbe2d5a0cd10daa555433b14230ede07225372.tar nixos-aefbe2d5a0cd10daa555433b14230ede07225372.tar.gz nixos-aefbe2d5a0cd10daa555433b14230ede07225372.tar.bz2 nixos-aefbe2d5a0cd10daa555433b14230ede07225372.tar.xz nixos-aefbe2d5a0cd10daa555433b14230ede07225372.zip | |
surtr: ...
Diffstat (limited to 'hosts/surtr/ruleset.nft')
| -rw-r--r-- | hosts/surtr/ruleset.nft | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/hosts/surtr/ruleset.nft b/hosts/surtr/ruleset.nft index f5ad5769..b9f83487 100644 --- a/hosts/surtr/ruleset.nft +++ b/hosts/surtr/ruleset.nft | |||
| @@ -80,6 +80,8 @@ table inet filter { | |||
| 80 | counter turn-rx {} | 80 | counter turn-rx {} |
| 81 | counter smtp-rx {} | 81 | counter smtp-rx {} |
| 82 | counter submissions-rx {} | 82 | counter submissions-rx {} |
| 83 | counter imap-rx {} | ||
| 84 | counter managesieve-rx {} | ||
| 83 | 85 | ||
| 84 | counter established-rx {} | 86 | counter established-rx {} |
| 85 | 87 | ||
| @@ -105,6 +107,8 @@ table inet filter { | |||
| 105 | counter turn-tx {} | 107 | counter turn-tx {} |
| 106 | counter smtp-tx {} | 108 | counter smtp-tx {} |
| 107 | counter submissions-tx {} | 109 | counter submissions-tx {} |
| 110 | counter imap-tx {} | ||
| 111 | counter managesieve-tx {} | ||
| 108 | 112 | ||
| 109 | counter tx {} | 113 | counter tx {} |
| 110 | 114 | ||
| @@ -170,8 +174,10 @@ table inet filter { | |||
| 170 | udp dport {3478, 5349} counter name stun-rx accept | 174 | udp dport {3478, 5349} counter name stun-rx accept |
| 171 | udp dport 49000-50000 counter name turn-rx accept | 175 | udp dport 49000-50000 counter name turn-rx accept |
| 172 | 176 | ||
| 173 | # tcp dport 25 counter name smtp-rx accept | 177 | tcp dport 25 counter name smtp-rx accept |
| 174 | tcp dport 465 counter name submissions-rx accept | 178 | tcp dport 465 counter name submissions-rx accept |
| 179 | tcp dport 993 counter name imaps-rx accept | ||
| 180 | tcp dport 4190 counter name managesieve-rx accept | ||
| 175 | 181 | ||
| 176 | ct state {established, related} counter name established-rx accept | 182 | ct state {established, related} counter name established-rx accept |
| 177 | 183 | ||
| @@ -214,6 +220,8 @@ table inet filter { | |||
| 214 | 220 | ||
| 215 | tcp sport 25 counter name smtp-tx accept | 221 | tcp sport 25 counter name smtp-tx accept |
| 216 | tcp sport 465 counter name submissions-tx accept | 222 | tcp sport 465 counter name submissions-tx accept |
| 223 | tcp sport 993 counter name imaps-tx accept | ||
| 224 | tcp sport 4190 counter name managesieve-tx accept | ||
| 217 | 225 | ||
| 218 | 226 | ||
| 219 | counter name tx | 227 | counter name tx |