From ddcc8c65e30a9ca3b56e25466e749cb100b28510 Mon Sep 17 00:00:00 2001 From: Gregor Kleen Date: Sat, 22 Oct 2022 19:33:45 +0200 Subject: ... --- installer/ruleset.nft | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'installer/ruleset.nft') diff --git a/installer/ruleset.nft b/installer/ruleset.nft index 803ce9fd..7b38a059 100644 --- a/installer/ruleset.nft +++ b/installer/ruleset.nft @@ -60,7 +60,7 @@ table inet filter { ct state invalid log level debug prefix "drop invalid input: " counter drop - + iifname lo counter accept iif != lo ip daddr 127.0.0.1/8 counter reject @@ -73,7 +73,7 @@ table inet filter { udp dport 60000-61000 counter accept - ct state {established, related} counter name established-rx accept + ct state {established, related} counter accept limit name lim_reject log level debug prefix "drop input: " counter drop -- cgit v1.2.3