summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--hosts/vidhar/ruleset.nft6
1 files changed, 4 insertions, 2 deletions
diff --git a/hosts/vidhar/ruleset.nft b/hosts/vidhar/ruleset.nft
index f4e2aa94..f5de1bd1 100644
--- a/hosts/vidhar/ruleset.nft
+++ b/hosts/vidhar/ruleset.nft
@@ -72,13 +72,15 @@ table inet filter {
72 72
73 chain output { 73 chain output {
74 type filter hook output priority filter 74 type filter hook output priority filter
75 policy drop 75 policy accept
76
76 77
78 oifname lo counter accept
77 79
78 oifname != dsl meta l4proto { ipv6-icmp, icmp, igmp } limit name lim_icmp_local counter accept 80 oifname != dsl meta l4proto { ipv6-icmp, icmp, igmp } limit name lim_icmp_local counter accept
79 oifname dsl meta l4proto { ipv6-icmp, icmp, igmp } limit name lim_icmp_dsl counter accept 81 oifname dsl meta l4proto { ipv6-icmp, icmp, igmp } limit name lim_icmp_dsl counter accept
82 meta l4proto { ipv6-icmp, icmp, igmp } counter drop
80 83
81 meta l4proto != { ipv6-icmp, icmp, igmp } counter drop
82 84
83 counter 85 counter
84 } 86 }
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-22 11:29:12 +0000