From ceafb57356ecfd50de230d9242ba22a69fd62ca3 Mon Sep 17 00:00:00 2001
From: Patrick Spek
Date: Tue, 27 Feb 2024 10:39:20 +0000
Subject: Add additional default nftable rules
---
defaults | 6 ++++++
1 file changed, 6 insertions(+)
(limited to 'defaults')
diff --git a/defaults b/defaults
index c3d4bc6..23a68ad 100644
--- a/defaults
+++ b/defaults
@@ -18,6 +18,12 @@ fw-nftables.input.policy=drop
fw-nftables.input.rules.ssh.policy=accept
fw-nftables.input.rules.ssh.port=22
fw-nftables.input.rules.ssh.proto=tcp
+fw-nftables.input.rules.mosh.policy=accept
+fw-nftables.input.rules.mosh.port=60000-61000
+fw-nftables.input.rules.mosh.proto=udp
+fw-nftables.input.rules.wireguard.policy=accept
+fw-nftables.input.rules.wireguard.port=51820
+fw-nftables.input.rules.wireguard.proto=udp
fw-nftables.input.state.established.policy=accept
fw-nftables.input.state.invalid.policy=drop
fw-nftables.input.state.related.policy=accept
--
cgit v1.1