From 3090a7dabfa3827a3438a0128035bfad9b943c9c Mon Sep 17 00:00:00 2001
From: Paul Lecuq <paul@paulbsd.com>
Date: Tue, 25 Jan 2022 00:18:08 +0100
Subject: [PATCH] updated nftables state

---
 states/nftables/templates/rules.nft.j2 | 1 +
 1 file changed, 1 insertion(+)

diff --git a/states/nftables/templates/rules.nft.j2 b/states/nftables/templates/rules.nft.j2
index f20ff04..1a7ec48 100644
--- a/states/nftables/templates/rules.nft.j2
+++ b/states/nftables/templates/rules.nft.j2
@@ -8,6 +8,7 @@ add table ip filter
 add chain ip filter INPUT { type filter hook input priority 0; policy drop; }
 add chain ip filter FORWARD { type filter hook forward priority 0; policy accept; }
 add chain ip filter OUTPUT { type filter hook output priority 0; policy accept; }
+add chain ip filter DOCKER
 add rule ip filter INPUT iifname lo counter accept
 add rule ip filter INPUT iifname tun* counter accept
 add rule ip filter INPUT ct state related,established counter accept