1
0
Fork 0
mirror of https://github.com/pygos/build.git synced 2024-11-22 19:19:46 +01:00

Update nftables ruleset syntax

Apparently the tooling is now more strict in what syntax it accepts.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
This commit is contained in:
David Oberhollenzer 2019-01-11 14:06:54 +01:00
parent 8650c174f7
commit 9a49a8aac4
2 changed files with 2 additions and 2 deletions

View file

@ -6,7 +6,7 @@ table inet filter {
ip protocol icmp accept ip protocol icmp accept
ct state {established, related} accept ct state established, related accept
ct state invalid drop ct state invalid drop
iifname lo accept iifname lo accept

View file

@ -4,7 +4,7 @@ table inet filter {
chain input { chain input {
type filter hook input priority 0; policy drop; type filter hook input priority 0; policy drop;
ct state {established, related} accept ct state established, related accept
ct state invalid drop ct state invalid drop
iifname lo accept iifname lo accept