pygos/build
1
0
Fork 0
mirror of https://github.com/pygos/build.git synced 2024-11-22 11:09:46 +01:00
Code Issues Releases Wiki Activity

Update nftables ruleset syntax

Browse source 
Apparently the tooling is now more strict in what syntax it accepts.

Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
This commit is contained in:
David Oberhollenzer 2019-01-11 14:06:54 +01:00
parent 8650c174f7
commit 9a49a8aac4
2 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
layer/router-alix/nftables.rules
View file

@ -6,7 +6,7 @@ table inet filter {
ip protocol icmp accept ip protocol icmp accept
ct state {established, related} accept ct state established, related accept
ct state invalid drop ct state invalid drop
iifname lo accept iifname lo accept

2
layer/router-rpi3/nftables.rules
View file

@ -4,7 +4,7 @@ table inet filter {
chain input { chain input {
type filter hook input priority 0; policy drop; type filter hook input priority 0; policy drop;
ct state {established, related} accept ct state established, related accept
ct state invalid drop ct state invalid drop
iifname lo accept iifname lo accept