rezometz/firewall
9
0
Fork 0
Code Issues Pull requests 1 Releases Wiki Activity

Il ne faut pas accepter dans les chaines from

Browse source
This commit is contained in:
Hugo LEVY-FALK 2019-01-10 00:17:02 +01:00
parent 230d583110
commit f7269696c7
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
zones/dmz.nft
View file

@ -47,8 +47,8 @@ table inet firewall {
} }
chain from_dmz { chain from_dmz {
ip saddr . tcp dport @dmz_allowed_tcp_out accept; not ip saddr . tcp dport @dmz_allowed_tcp_out drop;
ip saddr . udp dport @dmz_allowed_udp_out accept; not ip saddr . udp dport @dmz_allowed_udp_out drop;
} }
} }