Jeremy Gardais
|
5dd7ea7a5d
|
Allow outgoing icmp.
|
2017-08-09 16:04:54 +02:00 |
Jeremy Gardais
|
2aafa3c320
|
Define new sets and vars for output to avoid multiple redifinition of
the dicts.
|
2017-08-09 14:56:40 +02:00 |
Jeremy Gardais
|
f5f4b83a84
|
Manage nftables service at startup.
|
2017-08-09 14:27:07 +02:00 |
Jeremy Gardais
|
6b6a3a1794
|
Use 'ip' family as default for the firewall table.
|
2017-08-09 11:18:49 +02:00 |
Jeremy Gardais
|
7a36fddf38
|
Allow localhost traffic.
|
2017-08-09 11:05:00 +02:00 |
Jeremy Gardais
|
9ba41af525
|
Allow DHCP communication by default.
|
2017-08-09 11:02:14 +02:00 |
Jeremy Gardais
|
e018e439bb
|
Set output default policy to drop and allow DNS request.
|
2017-08-09 10:34:29 +02:00 |
Jeremy Gardais
|
c711ec53eb
|
Move output rules to a specific file.
|
2017-08-08 15:35:05 +02:00 |
Jeremy Gardais
|
19acb4cb22
|
Allow SSH input by default.
|
2017-08-08 14:53:29 +02:00 |
Jeremy Gardais
|
84fd89f6e6
|
Block all input packets destinate to blackhole set by default.
|
2017-08-08 14:37:54 +02:00 |
Jeremy Gardais
|
043bc55dcb
|
Manage sets and maps definitions in a specific file.
|
2017-08-08 14:32:59 +02:00 |
Jeremy Gardais
|
983e77df5d
|
Rename nft_input_conf file.
|
2017-08-08 13:42:44 +02:00 |
Jeremy Gardais
|
f1d2f6582f
|
Add possibility to have nftables vars.
|
2017-08-08 12:11:58 +02:00 |
Jeremy Gardais
|
2611dce9d9
|
Manage input rule with dict.
|
2017-08-07 17:50:11 +02:00 |
Jeremy Gardais
|
5ff44ffcfa
|
Move input rules to a specific file.
|
2017-08-07 17:37:41 +02:00 |
Jeremy Gardais
|
98d2bf82db
|
Add dict to manage global config rules.
|
2017-08-07 17:07:35 +02:00 |
Jeremy Gardais
|
1c1013067d
|
Notify `nftables` service when configuration file is modified.
|
2017-08-07 14:14:14 +02:00 |
Jeremy Gardais
|
bc6f69fc59
|
Generate main configuration file.
|
2017-08-07 13:48:54 +02:00 |
Jeremy Gardais
|
df57dc8042
|
Install nftables.
|
2017-08-07 12:09:13 +02:00 |