diff options
author | Patrick Spek <p.spek@tyil.nl> | 2024-02-28 11:35:01 +0100 |
---|---|---|
committer | Patrick Spek <p.spek@tyil.nl> | 2024-02-28 11:35:01 +0100 |
commit | 79e80221cd74b4055141699b59fcb51ecbce5601 (patch) | |
tree | aaee2bb39f98e47cd980ff474fbf24bcfe32ea2c /defaults | |
parent | 574e04cd1018109ae44646f88d6df0641bf42936 (diff) |
Rename fw-nftables to nftables
Diffstat (limited to 'defaults')
-rw-r--r-- | defaults | 38 |
1 files changed, 20 insertions, 18 deletions
@@ -9,24 +9,26 @@ dns.upstream.3=2a03:94e0:1804::1 dns.upstream.4=2001:470:71:6dc::53 etc-nixos.path=/etc/nixos etc-portage.path=/etc/portage -fw-nftables.input.icmp.ipv4.policy=accept -fw-nftables.input.icmp.ipv4.rate=2/second -fw-nftables.input.icmp.ipv6.policy=accept -fw-nftables.input.icmp.ipv6.rate=2/second -fw-nftables.input.interfaces.lo.policy=accept -fw-nftables.input.policy=drop -fw-nftables.input.rules.ssh.policy=accept -fw-nftables.input.rules.ssh.port=22 -fw-nftables.input.rules.ssh.proto=tcp -fw-nftables.input.rules.mosh.policy=accept -fw-nftables.input.rules.mosh.port=60000-61000 -fw-nftables.input.rules.mosh.proto=udp -fw-nftables.input.rules.wireguard.policy=accept -fw-nftables.input.rules.wireguard.port=51820 -fw-nftables.input.rules.wireguard.proto=udp -fw-nftables.input.state.established.policy=accept -fw-nftables.input.state.invalid.policy=drop -fw-nftables.input.state.related.policy=accept +nftables.input.icmp.ipv4.policy=accept +nftables.input.icmp.ipv4.rate=2/second +nftables.input.icmp.ipv6.policy=accept +nftables.input.icmp.ipv6.rate=2/second +nftables.input.interfaces.lo.policy=accept +nftables.input.interfaces.tyilnet.policy=accept +nftables.input.interfaces.tyilnet1058.policy=accept +nftables.input.policy=drop +nftables.input.rules.ssh.policy=accept +nftables.input.rules.ssh.port=22 +nftables.input.rules.ssh.proto=tcp +nftables.input.rules.mosh.policy=accept +nftables.input.rules.mosh.port=60000-61000 +nftables.input.rules.mosh.proto=udp +nftables.input.rules.wireguard.policy=accept +nftables.input.rules.wireguard.port=51820 +nftables.input.rules.wireguard.proto=udp +nftables.input.state.established.policy=accept +nftables.input.state.invalid.policy=drop +nftables.input.state.related.policy=accept k3s-master.cluster-domain=k3s.tyil.nl k3s-master.helm.apps.certmanager.chart=jetstack/cert-manager k3s-master.helm.apps.certmanager.namespace=base-system |