rezometz/firewall
9
0
Fork 0
Code Issues Pull requests 1 Releases Wiki Activity
firewall/zones/prerezotage.nft
Hugo Levy-Falk 31ee6ef787 SNAT
2019-02-09 10:23:05 +01:00

31 lines
328 B
Plaintext
Raw Blame History

#! /sbin/nft -f
table inet firewall {
set allowed_daddr_prerezotage {
type ipv4_addr
flags interval
elements = {
$comnpay,
$website
}
}
chain to_prerezotage {
accept
}
chain from_prerezotage {
ip daddr != @allowed_daddr_prerezotage drop
}
}
table nat {
chain prerezotage_nat {
masquerade
}
}
Reference in a new issue View git blame Copy permalink