diff options
author | Patrick Spek <p.spek@tyil.nl> | 2024-02-28 11:35:01 +0100 |
---|---|---|
committer | Patrick Spek <p.spek@tyil.nl> | 2024-02-28 11:35:01 +0100 |
commit | 79e80221cd74b4055141699b59fcb51ecbce5601 (patch) | |
tree | aaee2bb39f98e47cd980ff474fbf24bcfe32ea2c | |
parent | 574e04cd1018109ae44646f88d6df0641bf42936 (diff) |
Rename fw-nftables to nftables
-rw-r--r-- | defaults | 38 | ||||
-rw-r--r-- | playbooks.d/nftables/description.txt (renamed from playbooks.d/fw-nftables/description.txt) | 0 | ||||
-rw-r--r-- | playbooks.d/nftables/etc/defaults (renamed from playbooks.d/fw-nftables/etc/defaults) | 0 | ||||
-rw-r--r-- | playbooks.d/nftables/playbook.bash (renamed from playbooks.d/fw-nftables/playbook.bash) | 0 | ||||
-rw-r--r-- | registry.d/plarabe.tyil.net | 2 | ||||
-rw-r--r-- | registry.d/qohrei.tyil.net | 2 |
6 files changed, 22 insertions, 20 deletions
@@ -9,24 +9,26 @@ dns.upstream.3=2a03:94e0:1804::1 dns.upstream.4=2001:470:71:6dc::53 etc-nixos.path=/etc/nixos etc-portage.path=/etc/portage -fw-nftables.input.icmp.ipv4.policy=accept -fw-nftables.input.icmp.ipv4.rate=2/second -fw-nftables.input.icmp.ipv6.policy=accept -fw-nftables.input.icmp.ipv6.rate=2/second -fw-nftables.input.interfaces.lo.policy=accept -fw-nftables.input.policy=drop -fw-nftables.input.rules.ssh.policy=accept -fw-nftables.input.rules.ssh.port=22 -fw-nftables.input.rules.ssh.proto=tcp -fw-nftables.input.rules.mosh.policy=accept -fw-nftables.input.rules.mosh.port=60000-61000 -fw-nftables.input.rules.mosh.proto=udp -fw-nftables.input.rules.wireguard.policy=accept -fw-nftables.input.rules.wireguard.port=51820 -fw-nftables.input.rules.wireguard.proto=udp -fw-nftables.input.state.established.policy=accept -fw-nftables.input.state.invalid.policy=drop -fw-nftables.input.state.related.policy=accept +nftables.input.icmp.ipv4.policy=accept +nftables.input.icmp.ipv4.rate=2/second +nftables.input.icmp.ipv6.policy=accept +nftables.input.icmp.ipv6.rate=2/second +nftables.input.interfaces.lo.policy=accept +nftables.input.interfaces.tyilnet.policy=accept +nftables.input.interfaces.tyilnet1058.policy=accept +nftables.input.policy=drop +nftables.input.rules.ssh.policy=accept +nftables.input.rules.ssh.port=22 +nftables.input.rules.ssh.proto=tcp +nftables.input.rules.mosh.policy=accept +nftables.input.rules.mosh.port=60000-61000 +nftables.input.rules.mosh.proto=udp +nftables.input.rules.wireguard.policy=accept +nftables.input.rules.wireguard.port=51820 +nftables.input.rules.wireguard.proto=udp +nftables.input.state.established.policy=accept +nftables.input.state.invalid.policy=drop +nftables.input.state.related.policy=accept k3s-master.cluster-domain=k3s.tyil.nl k3s-master.helm.apps.certmanager.chart=jetstack/cert-manager k3s-master.helm.apps.certmanager.namespace=base-system diff --git a/playbooks.d/fw-nftables/description.txt b/playbooks.d/nftables/description.txt index 38683d6..38683d6 100644 --- a/playbooks.d/fw-nftables/description.txt +++ b/playbooks.d/nftables/description.txt diff --git a/playbooks.d/fw-nftables/etc/defaults b/playbooks.d/nftables/etc/defaults index 10cc38b..10cc38b 100644 --- a/playbooks.d/fw-nftables/etc/defaults +++ b/playbooks.d/nftables/etc/defaults diff --git a/playbooks.d/fw-nftables/playbook.bash b/playbooks.d/nftables/playbook.bash index c0b366c..c0b366c 100644 --- a/playbooks.d/fw-nftables/playbook.bash +++ b/playbooks.d/nftables/playbook.bash diff --git a/registry.d/plarabe.tyil.net b/registry.d/plarabe.tyil.net index b401121..f93a766 100644 --- a/registry.d/plarabe.tyil.net +++ b/registry.d/plarabe.tyil.net @@ -1,2 +1,2 @@ -fw-nftables +nftables vpn-tinc diff --git a/registry.d/qohrei.tyil.net b/registry.d/qohrei.tyil.net index a9f3dcb..1fa2dc8 100644 --- a/registry.d/qohrei.tyil.net +++ b/registry.d/qohrei.tyil.net @@ -1,3 +1,3 @@ -fw-nftables +nftables vpn-tinc vpn-wireguard |