eriol/ansible-collection-kit
1
0
Fork 0
Code Releases Activity

Make the resulting file properly formatted

Browse source
This commit is contained in:
Daniele Tricoli 2020-10-27 02:36:16 +01:00
parent 1ea0fb35f4
commit 7a4fbb6bbe
1 changed files with 11 additions and 9 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
roles/nftables/templates/etc/nftables.conf.j2
View file

@ -15,21 +15,23 @@ table inet filter {
tcp flags & (fin|syn|rst|psh|ack|urg) == fin|syn|rst|psh|ack|urg counter drop comment "Drop XMAS packets"
tcp flags & (fin|syn|rst|psh|ack|urg) == 0x0 counter drop comment "Drop NULL packets"
{% for rule in nftables_input_rules %}
{{ rule }}
{% endfor %}
{% for rule in nftables_input_rules %}
{{ rule }}
{% endfor %}
}
chain forward {
type filter hook forward priority 0; policy {{ nftables_forward_policy }};
{% for rule in nftables_forward_rules %}
{{ rule }}
{% endfor %}
{% for rule in nftables_forward_rules %}
{{ rule }}
{% endfor %}
}
chain output {
type filter hook output priority 0; policy {{ nftables_output_policy }};
{% for rule in nftables_output_rules %}
{{ rule }}
{% endfor %}
{% for rule in nftables_output_rules %}
{{ rule }}
{% endfor %}
}
}