From 52e04e798679f0bc448b1df6b87435db43d3def2 Mon Sep 17 00:00:00 2001 From: Gregor Kleen Date: Thu, 9 Dec 2021 15:44:57 +0100 Subject: vidhar: nftables... --- hosts/vidhar/ruleset.nft | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) (limited to 'hosts') diff --git a/hosts/vidhar/ruleset.nft b/hosts/vidhar/ruleset.nft index 9b91141f..3d4d1bb0 100644 --- a/hosts/vidhar/ruleset.nft +++ b/hosts/vidhar/ruleset.nft @@ -52,10 +52,10 @@ table inet filter { iifname lo counter accept - oifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop oifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop - iifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop iifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop + oifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop + iifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop meta l4proto $icmp_protos counter accept iifname eno1 oifname dsl counter accept @@ -113,8 +113,8 @@ table inet filter { oifname lo counter accept - oifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop oifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop + oifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop meta l4proto $icmp_protos counter accept -- cgit v1.2.3