celso
/
homemade_firewall
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

allowed loopback traffic

This commit is contained in:
celso 2024-12-12 22:23:05 -03:00
parent be8d249c29
commit baa554ffd0
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
filter.nft
View File

@ -26,6 +26,7 @@ table ip filter {
type filter hook input priority filter; policy drop; type filter hook input priority filter; policy drop;
ct state invalid drop; ct state invalid drop;
ct state {related,established} accept; ct state {related,established} accept;
iifname "lo" accept;
tcp dport @allowed_tcp_ports accept; tcp dport @allowed_tcp_ports accept;
udp dport @allowed_udp_ports_in accept; udp dport @allowed_udp_ports_in accept;
} }
@ -36,5 +37,6 @@ table ip filter {
chain out { chain out {
type filter hook output priority filter; policy drop; type filter hook output priority filter; policy drop;
udp dport @allowed_udp_ports_out accept; udp dport @allowed_udp_ports_out accept;
oifname "lo" accept;
} }
} }