From 7398a5046bcfaab199dbf38ac395a84a0787381e Mon Sep 17 00:00:00 2001 From: celso Date: Fri, 13 Dec 2024 04:32:30 -0300 Subject: [PATCH] saved a few lines in named set definitons --- filter.nft | 12 ++++-------- 1 file changed, 4 insertions(+), 8 deletions(-) diff --git a/filter.nft b/filter.nft index ffc9f8a..37f2eeb 100644 --- a/filter.nft +++ b/filter.nft @@ -6,8 +6,7 @@ include "/var/geoipsets/dbip/nftset/ipv4/*.ipv4" table ip filter { set allowed_tcp_ports { - type inet_service; - flags constant; + type inet_service; flags constant; elements = { $SSH_PORT1, $SSH_PORT2, $DNS_PORT, $HTTP_PORT, $HTTPS_PORT, $SYNCPLAY_PORT, $TERRARIA_PORT, $OPENTTD_PORT, $MAINPAGE_PORT, $NEXTCLOUD_PORT, $GITEA_PORT, @@ -16,20 +15,17 @@ table ip filter { } set allowed_udp_ports_in { - type inet_service; - flags constant; + type inet_service; flags constant; elements = { $DNS_PORT, $DHCP_IN_PORT, $OPENVPN_PORT, $FACTORIO_PORT, $OPENTTD_PORT, $CSTRIKE_PORT, $SNMP_POLL_PORT, $SNMP_TRAP_PORT } } set allowed_udp_ports_out { - type inet_service; - flags constant; + type inet_service; flags constant; elements = { $DNS_PORT, $DHCP_OUT_PORT, $SNMP_POLL_PORT } } set ipv4_geo_blacklist { - type ipv4_addr; - flags interval; + type ipv4_addr; flags interval; elements = { }; }