From 84f2affd66a0ff3947b91a30308cb8e6a8ff7594 Mon Sep 17 00:00:00 2001 From: Gregor Kleen Date: Thu, 19 May 2022 22:05:02 +0200 Subject: surtr: ... --- hosts/vidhar/network/ruleset.nft | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'hosts/vidhar/network') diff --git a/hosts/vidhar/network/ruleset.nft b/hosts/vidhar/network/ruleset.nft index d956cb74..c0da0fa6 100644 --- a/hosts/vidhar/network/ruleset.nft +++ b/hosts/vidhar/network/ruleset.nft @@ -163,7 +163,7 @@ table inet filter { meta l4proto $icmp_protos counter name icmp-rx accept iifname { lan, mgmt, dsl, yggdrasil, bifrost } tcp dport 22 counter name ssh-rx accept - iifname { lan, mgmt, dsl, yggdrasil, bifrost } udp dport 60001-61000 counter name mosh-rx accept + iifname { lan, mgmt, dsl, yggdrasil, bifrost } udp dport 60000-61000 counter name mosh-rx accept iifname { lan, mgmt, dmz01, yggdrasil } tcp dport 53 counter name dns-rx accept iifname { lan, mgmt, dmz01, yggdrasil } udp dport 53 counter name dns-rx accept @@ -207,7 +207,7 @@ table inet filter { tcp sport 22 counter name ssh-tx - udp sport 60001-61000 counter name mosh-tx + udp sport 60000-61000 counter name mosh-tx tcp sport 53 counter name dns-tx udp sport 53 counter name dns-tx -- cgit v1.2.3