Autorise les bannis à voir la roulette

2020-01-20 11:49:05 +01:00 · 2020-01-20 11:49:05 +01:00 · 4705ca5e7b
parent 44ed75a4ad
commit 4705ca5e7b
1 changed files with 10 additions and 2 deletions
--- a/roulette.nft
+++ b/roulette.nft
@ -19,9 +19,17 @@ table inet firewall {
 	set ip_roulette {
 		type ipv4_addr
 	}
+	set allowed_roulette {
+		type ipv4_addr
+		elements = {
+			10.7.0.4,
+			92.242.132.24
+		}
+	}
+
 	chain roulette {
-		ip saddr @ip_roulette ip daddr != 92.242.132.24 drop
-		ip daddr @ip_roulette ip saddr != 92.242.132.24 drop
+		ip saddr @ip_roulette ip daddr != @allowed_roulette drop
+		ip daddr @ip_roulette ip saddr != @allowed_roulette drop
 	}
 }