diff options
Diffstat (limited to 'etc/nftables.conf')
| -rw-r--r-- | etc/nftables.conf | 8 |
1 files changed, 7 insertions, 1 deletions
diff --git a/etc/nftables.conf b/etc/nftables.conf index aa2b53f1..b1d638b6 100644 --- a/etc/nftables.conf +++ b/etc/nftables.conf @@ -5,6 +5,7 @@ # some codes from https://wiki.archlinux.org/title/Nftables +# needed for reload config using `sudo systemctl restart nftables` or `sudo nft -f /etc/nftables.conf` table inet my_table delete table inet my_table @@ -19,7 +20,12 @@ table inet my_table { iifname lo accept comment "allow from loopback" ip protocol icmp accept comment "allow icmp" meta l4proto ipv6-icmp accept comment "allow icmp v6" - tcp dport ssh accept comment "allow sshd" + + #tcp dport ssh accept comment "allow sshd" + #tcp dport searx accept comment "allow searx" + tcp dport qrcp accept comment "allow qrcp" + udp dport mdns accept comment "allow mdns" + pkttype host limit rate 5/second counter reject with icmpx type admin-prohibited counter comment "count any other traffic" } |