Skip to content

Commit

Permalink
networking/dn42/firewall: fix other forwarding
Browse files Browse the repository at this point in the history
  • Loading branch information
@linyinfeng
linyinfeng committed Sep 24, 2024
1 parent 27722e6 commit 77ad656
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions nixos/modules/networking/dn42/dn42.nft
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,6 +22,6 @@ set dn42-ip6 {

chain filter {
type filter hook forward priority filter; policy accept;
ip saddr @dn42-ip4 ip daddr != @dn42-ip4 counter reject with icmp admin-prohibited;
ip6 saddr @dn42-ip6 ip6 daddr != @dn42-ip6 counter reject with icmpv6 admin-prohibited;
ip saddr @dn42-ip4 iifname "mesh-*" ip daddr != @dn42-ip4 counter reject with icmp admin-prohibited;
ip6 saddr @dn42-ip6 iifname "mesh-*" ip6 daddr != @dn42-ip6 counter reject with icmpv6 admin-prohibited;
}

0 comments on commit 77ad656

Please sign in to comment.