ansible/router
ansible/router
2
0
Fork 0
Code Issues 1 Pull requests Activity

fix: nftables file location

Browse source
This commit is contained in:
Simon Cornet 2026-02-17 08:59:03 +01:00
commit a4f00a90ab
2 changed files with 5 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

9
templates/nftables.conf.j2 → templates/nftables.nft.j2
View file

@ -12,18 +12,15 @@ table inet filter {
# Allow loopback
iif lo accept
# Allow LAN management access
iif {{ lan_interface }} accept
# Allow ICMP
ip protocol icmp accept
ip6 nexthdr ipv6-icmp accept
# Allow incoming firewall rules
{% for rule in incoming_firewall_rules %}
# {{ rule.name }}
iif {{ lan_interface }} ip saddr {{ rule.source }} {{ rule.protocol | default('tcp') }} dport {{ rule.port }} accept
{% endfor %}
# Allow ICMP
ip protocol icmp accept
ip6 nexthdr ipv6-icmp accept
}
chain forward {