From ca9c2e873a0c1d63d5c4a44508e96911efc4f1b9 Mon Sep 17 00:00:00 2001 From: Gregor Kleen Date: Sun, 5 Mar 2023 11:25:53 +0100 Subject: ... --- hosts/vidhar/printing/ruleset.nft | 6 ++++++ 1 file changed, 6 insertions(+) (limited to 'hosts') diff --git a/hosts/vidhar/printing/ruleset.nft b/hosts/vidhar/printing/ruleset.nft index e47256c3..f8081431 100644 --- a/hosts/vidhar/printing/ruleset.nft +++ b/hosts/vidhar/printing/ruleset.nft @@ -63,6 +63,7 @@ table inet filter { counter icmp-ratelimit-rx {} counter icmp-rx {} + counter dhcp-rx {} counter cups-rx {} counter established-rx {} @@ -80,6 +81,7 @@ table inet filter { counter icmp-tx {} counter cups-tx {} + counter dhcp-tx {} counter tx {} @@ -131,6 +133,8 @@ table inet filter { ip6 saddr 2a03:4000:52:ada:5:: tcp dport 631 counter name cups-rx accept ip saddr 10.141.5.0 tcp dport 631 counter name cups-rx accept + iifname printer udp dport 67 counter name dhcp-rx accept + ct state {established, related} counter name established-rx accept @@ -156,6 +160,8 @@ table inet filter { tcp sport 631 counter name cups-tx accept + udp sport 67 counter name dhcp-tx accept + counter name tx } -- cgit v1.2.3