diff options
| author | Xiao Pan <xyz@flylightning.xyz> | 2024-12-25 02:07:16 -0800 |
|---|---|---|
| committer | Xiao Pan <xyz@flylightning.xyz> | 2024-12-25 02:07:16 -0800 |
| commit | 94277ca5ac170f4650606bf2b4e8a5c4aa812c67 (patch) | |
| tree | 98b685e01dc421733413933e8508ddee5d0289c1 /etc/nftables.conf | |
| parent | 7b9374bbe2b048931343e9bbdb39bd071d577052 (diff) | |
| parent | 46c65d1bdb88d39e72d6e7280176687b6ad9488d (diff) | |
Merge branch 'ca' into ib
Combine ca into ia to become new ib VPS.
Diffstat (limited to 'etc/nftables.conf')
| -rw-r--r-- | etc/nftables.conf | 12 |
1 files changed, 11 insertions, 1 deletions
diff --git a/etc/nftables.conf b/etc/nftables.conf index ab16ed11..da1f2f44 100644 --- a/etc/nftables.conf +++ b/etc/nftables.conf @@ -13,7 +13,6 @@ flush ruleset define pub_iface = "eth0" define wg_iface = "wg0" - table inet my_table { chain my_input { @@ -33,6 +32,17 @@ table inet my_table { udp dport qbt accept #tcp dport iperf3 accept udp dport wireguard accept + udp dport swgp accept + # for acme.sh standalone mode builtin webserver to renew ssl cert + tcp dport http accept + # email related ports + tcp dport smtp accept + tcp dport pop3 accept + tcp dport imap accept + tcp dport submissions accept + tcp dport submission accept + tcp dport imaps accept + tcp dport pop3s accept pkttype host limit rate 5/second counter reject with icmpx type admin-prohibited counter comment "count any other traffic" |