surtr: ...

author: Gregor Kleen <gkleen@yggdrasil.li> 2022-05-19 22:05:02 +0200
committer: Gregor Kleen <gkleen@yggdrasil.li> 2022-05-19 22:05:02 +0200
commit: 84f2affd66a0ff3947b91a30308cb8e6a8ff7594 (patch)
tree: 4b05057b68ef6c9e8766b80927221b360d13d167 /hosts/vidhar/network
parent: 8f0bf6945a24ea8dac4e8395461bb92f22ab71a0 (diff)
download: nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar
nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar.gz
nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar.bz2
nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar.xz
nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/hosts/vidhar/network/ruleset.nft b/hosts/vidhar/network/ruleset.nft
index d956cb74..c0da0fa6 100644
--- a/hosts/vidhar/network/ruleset.nft
+++ b/hosts/vidhar/network/ruleset.nft
@@ -163,7 +163,7 @@ table inet filter {
    meta l4proto $icmp_protos counter name icmp-rx accept
    iifname { lan, mgmt, dsl, yggdrasil, bifrost } tcp dport 22 counter name ssh-rx accept
-    iifname { lan, mgmt, dsl, yggdrasil, bifrost } udp dport 60001-61000 counter name mosh-rx accept
+    iifname { lan, mgmt, dsl, yggdrasil, bifrost } udp dport 60000-61000 counter name mosh-rx accept
    iifname { lan, mgmt, dmz01, yggdrasil } tcp dport 53 counter name dns-rx accept
    iifname { lan, mgmt, dmz01, yggdrasil } udp dport 53 counter name dns-rx accept
@@ -207,7 +207,7 @@ table inet filter {
    tcp sport 22 counter name ssh-tx
-    udp sport 60001-61000 counter name mosh-tx
+    udp sport 60000-61000 counter name mosh-tx
    tcp sport 53 counter name dns-tx
    udp sport 53 counter name dns-tx
author	Gregor Kleen <gkleen@yggdrasil.li>	2022-05-19 22:05:02 +0200
committer	Gregor Kleen <gkleen@yggdrasil.li>	2022-05-19 22:05:02 +0200
commit	84f2affd66a0ff3947b91a30308cb8e6a8ff7594 (patch)
tree	4b05057b68ef6c9e8766b80927221b360d13d167 /hosts/vidhar/network
parent	8f0bf6945a24ea8dac4e8395461bb92f22ab71a0 (diff)
download	nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar.gz nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar.bz2 nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.tar.xz nixos-84f2affd66a0ff3947b91a30308cb8e6a8ff7594.zip

diff --git a/hosts/vidhar/network/ruleset.nft b/hosts/vidhar/network/ruleset.nft index d956cb74..c0da0fa6 100644 --- a/hosts/vidhar/network/ruleset.nft +++ b/hosts/vidhar/network/ruleset.nft
@@ -163,7 +163,7 @@ table inet filter {
163	meta l4proto $icmp_protos counter name icmp-rx accept	163	meta l4proto $icmp_protos counter name icmp-rx accept
164		164
165	iifname { lan, mgmt, dsl, yggdrasil, bifrost } tcp dport 22 counter name ssh-rx accept	165	iifname { lan, mgmt, dsl, yggdrasil, bifrost } tcp dport 22 counter name ssh-rx accept
166	iifname { lan, mgmt, dsl, yggdrasil, bifrost } udp dport 60001-61000 counter name mosh-rx accept	166	iifname { lan, mgmt, dsl, yggdrasil, bifrost } udp dport 60000-61000 counter name mosh-rx accept
167		167
168	iifname { lan, mgmt, dmz01, yggdrasil } tcp dport 53 counter name dns-rx accept	168	iifname { lan, mgmt, dmz01, yggdrasil } tcp dport 53 counter name dns-rx accept
169	iifname { lan, mgmt, dmz01, yggdrasil } udp dport 53 counter name dns-rx accept	169	iifname { lan, mgmt, dmz01, yggdrasil } udp dport 53 counter name dns-rx accept
@@ -207,7 +207,7 @@ table inet filter {
207		207
208		208
209	tcp sport 22 counter name ssh-tx	209	tcp sport 22 counter name ssh-tx
210	udp sport 60001-61000 counter name mosh-tx	210	udp sport 60000-61000 counter name mosh-tx
211		211
212	tcp sport 53 counter name dns-tx	212	tcp sport 53 counter name dns-tx
213	udp sport 53 counter name dns-tx	213	udp sport 53 counter name dns-tx