rezometz/firewall
9
0
Fork 0
Code Issues Pull requests 1 Releases Wiki Activity

Autorise les bannis à voir la roulette

Browse source
This commit is contained in:
Hugo Levy-Falk 2020-01-20 11:49:05 +01:00 committed by root
parent 44ed75a4ad
commit 4705ca5e7b
1 changed files with 10 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
roulette.nft
View file

@ -19,9 +19,17 @@ table inet firewall {
set ip_roulette { set ip_roulette {
type ipv4_addr type ipv4_addr
} }
set allowed_roulette {
type ipv4_addr
elements = {
10.7.0.4,
92.242.132.24
}
}
chain roulette { chain roulette {
ip saddr @ip_roulette ip daddr != 92.242.132.24 drop ip saddr @ip_roulette ip daddr != @allowed_roulette drop
ip daddr @ip_roulette ip saddr != 92.242.132.24 drop ip daddr @ip_roulette ip saddr != @allowed_roulette drop
} }
} }