From b94928f5fbfc3b2c49384c66577231c2ad5a13df Mon Sep 17 00:00:00 2001 From: Gregor Kleen Date: Thu, 9 Dec 2021 09:37:46 +0100 Subject: vidhar: nftables... --- hosts/vidhar/ruleset.nft | 2 ++ 1 file changed, 2 insertions(+) (limited to 'hosts') diff --git a/hosts/vidhar/ruleset.nft b/hosts/vidhar/ruleset.nft index 9c82052f..100d9823 100644 --- a/hosts/vidhar/ruleset.nft +++ b/hosts/vidhar/ruleset.nft @@ -25,6 +25,8 @@ table inet filter { oifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop oifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop + iifname != dsl meta l4proto $icmp_protos limit name lim_icmp_local counter drop + iifname dsl meta l4proto $icmp_protos limit name lim_icmp_dsl counter drop meta l4proto $icmp_protos counter accept iifname eno1 oifname dsl counter accept -- cgit v1.2.3