From ba86ae504d8ea9796e43c1b061aa070761cd1323 Mon Sep 17 00:00:00 2001
From: Gregor Kleen <gkleen@yggdrasil.li>
Date: Mon, 21 Nov 2022 18:58:56 +0100
Subject: pgbackrest

---
 hosts/vidhar/network/ruleset.nft | 6 ++++++
 1 file changed, 6 insertions(+)

(limited to 'hosts/vidhar/network/ruleset.nft')

diff --git a/hosts/vidhar/network/ruleset.nft b/hosts/vidhar/network/ruleset.nft
index 473f8a20..da3a9048 100644
--- a/hosts/vidhar/network/ruleset.nft
+++ b/hosts/vidhar/network/ruleset.nft
@@ -87,6 +87,7 @@ table inet filter {
   counter samba-rx {}
   counter http-rx {}
   counter tftp-rx {}
+  counter pgbackrest-rx {}
 
   counter established-rx {}
 
@@ -114,6 +115,7 @@ table inet filter {
   counter samba-tx {}
   counter http-tx {}
   counter tftp-tx {}
+  counter pgbackrest-tx {}
 
   counter tx {}
 
@@ -189,6 +191,8 @@ table inet filter {
 
     iifname { lan, mgmt } udp dport 69 counter name tftp-rx accept
 
+    iifname yggdrasil tcp dport 8432 counter name pgbackrest-rx accept
+
     ct state {established, related} counter name established-rx accept
 
 
@@ -235,6 +239,8 @@ table inet filter {
     udp sport 69 counter name tftp-tx accept
     udp dport 69 counter name tftp-tx accept
 
+    tcp sport 8432 counter name pgbackrest-tx accept
+
 
     counter name tx
   }
-- 
cgit v1.2.3