From c8fd489b93aa03c50c22087b2faa84b41710ecfe Mon Sep 17 00:00:00 2001
From: Simon Cornet <simon@simoncor.net>
Date: Wed, 18 Feb 2026 07:28:28 +0100
Subject: [PATCH] feat: add interface to firewall logic

---
 templates/nftables.nft.j2 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/templates/nftables.nft.j2 b/templates/nftables.nft.j2
index b18b39e..239359f 100644
--- a/templates/nftables.nft.j2
+++ b/templates/nftables.nft.j2
@@ -19,7 +19,7 @@ table inet filter {
         # allow incoming firewall rules
 {% for rule in incoming_firewall_rules %}
         # {{ rule.name }}
-        iif {{ lan_interface }} ip saddr {{ rule.source }} {{ rule.protocol | default('tcp') }} dport {{ rule.port }} accept
+        iif {{ rule.interface | default(lan_interface) }} ip saddr {{ rule.source }} {{ rule.protocol | default('tcp') }} dport {{ rule.port }} accept
 {% endfor %}
     }