updated nftables state
This commit is contained in:
parent
b085477bee
commit
3090a7dabf
@ -8,6 +8,7 @@ add table ip filter
|
|||||||
add chain ip filter INPUT { type filter hook input priority 0; policy drop; }
|
add chain ip filter INPUT { type filter hook input priority 0; policy drop; }
|
||||||
add chain ip filter FORWARD { type filter hook forward priority 0; policy accept; }
|
add chain ip filter FORWARD { type filter hook forward priority 0; policy accept; }
|
||||||
add chain ip filter OUTPUT { type filter hook output priority 0; policy accept; }
|
add chain ip filter OUTPUT { type filter hook output priority 0; policy accept; }
|
||||||
|
add chain ip filter DOCKER
|
||||||
add rule ip filter INPUT iifname lo counter accept
|
add rule ip filter INPUT iifname lo counter accept
|
||||||
add rule ip filter INPUT iifname tun* counter accept
|
add rule ip filter INPUT iifname tun* counter accept
|
||||||
add rule ip filter INPUT ct state related,established counter accept
|
add rule ip filter INPUT ct state related,established counter accept
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user