commit c2f3e9e2ad3651c4b1b246562047aa2dcbbb8d36 Author: Robert Russell <robert@rr3.xyz> Date: Sun, 22 Sep 2024 16:02:33 -0700 Initial commit Diffstat:
| A | nftables.conf | | | 23 | +++++++++++++++++++++++ |
1 file changed, 23 insertions(+), 0 deletions(-)
diff --git a/nftables.conf b/nftables.conf @@ -0,0 +1,23 @@ +flush ruleset + +table inet firewall { + chain input { + type filter hook input priority filter; policy drop; + + meta iif lo accept + ct state invalid drop + ct state established,related accept + meta l4proto icmp accept + meta l4proto ipv6-icmp accept + + counter comment "Count everything else" + } + + chain forward { + type filter hook forward priority filter; policy drop; + } + + chain output { + type filter hook output priority filter; policy accept; + } +}