diff options
Diffstat (limited to 'hosts/surtr/ruleset.nft')
| -rw-r--r-- | hosts/surtr/ruleset.nft | 4 |
1 files changed, 3 insertions, 1 deletions
diff --git a/hosts/surtr/ruleset.nft b/hosts/surtr/ruleset.nft index a66d7193..cb41f1cf 100644 --- a/hosts/surtr/ruleset.nft +++ b/hosts/surtr/ruleset.nft | |||
| @@ -73,9 +73,11 @@ table inet filter { | |||
| 73 | meta l4proto $icmp_protos counter accept | 73 | meta l4proto $icmp_protos counter accept |
| 74 | 74 | ||
| 75 | tcp dport 22 counter accept | 75 | tcp dport 22 counter accept |
| 76 | udp dport 60001-61000 counter accept | ||
| 77 | |||
| 76 | meta protocol ip udp dport 51820 counter accept | 78 | meta protocol ip udp dport 51820 counter accept |
| 77 | meta protocol ip6 udp dport 51821 counter accept | 79 | meta protocol ip6 udp dport 51821 counter accept |
| 78 | udp dport 60001-61000 counter accept | 80 | iifname "yggdrasil-wg-*" meta l4proto gre counter accept |
| 79 | 81 | ||
| 80 | tcp dport 53 counter accept | 82 | tcp dport 53 counter accept |
| 81 | udp dport 53 counter accept | 83 | udp dport 53 counter accept |