summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--hosts/vidhar/ruleset.nft10
1 files changed, 5 insertions, 5 deletions
diff --git a/hosts/vidhar/ruleset.nft b/hosts/vidhar/ruleset.nft
index dc95b95b..8877f123 100644
--- a/hosts/vidhar/ruleset.nft
+++ b/hosts/vidhar/ruleset.nft
@@ -1,6 +1,6 @@
1table inet filter { 1table inet filter {
2 chain reject-rl { 2 chain reject-rl {
3 limit rate over 1024 / second burst 1024 packets counter drop 3 limit rate over 1000 / second burst 1000 packets counter drop
4 } 4 }
5 5
6 6
@@ -19,8 +19,8 @@ table inet filter {
19 19
20 log prefix "reject forward: " counter 20 log prefix "reject forward: " counter
21 jump reject-rl 21 jump reject-rl
22 meta l4proto tcp ct new counter reject with tcp reset 22 meta l4proto tcp ct state new counter reject with tcp reset
23 ct new counter reject 23 ct state new counter reject
24 } 24 }
25 25
26 chain input { 26 chain input {
@@ -47,8 +47,8 @@ table inet filter {
47 47
48 log prefix "reject input: " counter 48 log prefix "reject input: " counter
49 jump reject-rl 49 jump reject-rl
50 meta l4proto tcp ct new counter reject with tcp reset 50 meta l4proto tcp ct state new counter reject with tcp reset
51 ct new counter reject 51 ct state new counter reject
52 } 52 }
53 53
54 chain output { 54 chain output {
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-21 15:40:49 +0000