Commit Graph

66 Commits

Author SHA1 Message Date
Jeremy Gardais 9ba41af525 Allow DHCP communication by default. 2017-08-09 11:02:14 +02:00
Jeremy Gardais e018e439bb Set output default policy to drop and allow DNS request. 2017-08-09 10:34:29 +02:00
Jeremy Gardais c711ec53eb Move output rules to a specific file. 2017-08-08 15:35:05 +02:00
Jeremy Gardais 19acb4cb22 Allow SSH input by default. 2017-08-08 14:53:29 +02:00
Jeremy Gardais 84fd89f6e6 Block all input packets destinate to blackhole set by default. 2017-08-08 14:37:54 +02:00
Jeremy Gardais 043bc55dcb Manage sets and maps definitions in a specific file. 2017-08-08 14:32:59 +02:00
Jeremy Gardais 983e77df5d Rename nft_input_conf file. 2017-08-08 13:42:44 +02:00
Jeremy Gardais f1d2f6582f Add possibility to have nftables vars. 2017-08-08 12:11:58 +02:00
Jeremy Gardais 4fdf3232c3 Add an example playbook. 2017-08-07 17:59:21 +02:00
Jeremy Gardais 2611dce9d9 Manage input rule with dict. 2017-08-07 17:50:11 +02:00
Jeremy Gardais 5ff44ffcfa Move input rules to a specific file. 2017-08-07 17:37:41 +02:00
Jeremy Gardais 817e6d46fd Thanks to Mike Gleason inspiration in his role ! 2017-08-07 17:16:09 +02:00
Jeremy Gardais 98d2bf82db Add dict to manage global config rules. 2017-08-07 17:07:35 +02:00
Jeremy Gardais 1c1013067d Notify `nftables` service when configuration file is modified. 2017-08-07 14:14:14 +02:00
Jeremy Gardais bc6f69fc59 Generate main configuration file. 2017-08-07 13:48:54 +02:00
Jeremy Gardais df57dc8042 Install nftables. 2017-08-07 12:09:13 +02:00