Reject forwarding traffic
This commit is contained in:
parent
c09d259702
commit
899cc36c8b
1 changed files with 3 additions and 1 deletions
|
@ -187,7 +187,7 @@ in
|
||||||
table inet filter {
|
table inet filter {
|
||||||
set hosted_services_tcp {
|
set hosted_services_tcp {
|
||||||
type inet_service; flags interval;
|
type inet_service; flags interval;
|
||||||
elements = { 22, 80, 443, $DRAWPILE_TCP_PORT }
|
elements = { 22, $FORGEJO_SSH_PORT, 80, 443, $DRAWPILE_TCP_PORT }
|
||||||
}
|
}
|
||||||
|
|
||||||
set internal_access_tcp {
|
set internal_access_tcp {
|
||||||
|
@ -264,6 +264,8 @@ in
|
||||||
$DEVICES : jump devices_out,
|
$DEVICES : jump devices_out,
|
||||||
$WIFI : jump wifi_out
|
$WIFI : jump wifi_out
|
||||||
}
|
}
|
||||||
|
|
||||||
|
jump reject_politely
|
||||||
}
|
}
|
||||||
|
|
||||||
chain input {
|
chain input {
|
||||||
|
|
Loading…
Reference in a new issue