We need flags interval to be able to use CIDR notation in minifirewall_privileged_ips and minifirewall_trusted_ips sets
This commit is contained in:
parent
948a3aeeb2
commit
1b19f7084b
|
@ -86,11 +86,11 @@ $NFT add chain inet minifirewall minifirewall_forward '{ type filter hook forwar
|
|||
$NFT add chain inet minifirewall minifirewall_output '{ type filter hook output priority 0 ; policy accept ; }'
|
||||
|
||||
# Add set with trusted IP addresses
|
||||
$NFT add set inet minifirewall minifirewall_trusted_ips { type ipv4_addr\;}
|
||||
$NFT add set inet minifirewall minifirewall_trusted_ips '{ type ipv4_addr ; flags interval ;}'
|
||||
$NFT add element inet minifirewall minifirewall_trusted_ips {$(echo $TRUSTEDIPS | sed 's/ /, /g')}
|
||||
|
||||
# Add set with privileged IP addresses
|
||||
$NFT add set inet minifirewall minifirewall_privileged_ips { type ipv4_addr\;}
|
||||
# Add set with privileged IP addresses
|
||||
$NFT add set inet minifirewall minifirewall_privileged_ips '{ type ipv4_addr ; flags interval ;}'
|
||||
$NFT add element inet minifirewall minifirewall_privileged_ips {$(echo $PRIVILEGIEDIPS | sed 's/ /, /g')}
|
||||
|
||||
# Add set for blocked IP addresses
|
||||
|
|
Loading…
Reference in a new issue