From 1b19f7084ba649efff432f3b080acb54c557057f Mon Sep 17 00:00:00 2001
From: Tristan PILAT <tpilat@evolix.fr>
Date: Wed, 14 Oct 2020 17:21:00 +0200
Subject: [PATCH] We need flags interval to be able to use CIDR notation in
 minifirewall_privileged_ips and minifirewall_trusted_ips sets

---
 minifirewall-start.sh | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/minifirewall-start.sh b/minifirewall-start.sh
index 7cbb559..e5cf03d 100755
--- a/minifirewall-start.sh
+++ b/minifirewall-start.sh
@@ -86,11 +86,11 @@ $NFT add chain inet minifirewall minifirewall_forward '{ type filter hook forwar
 $NFT add chain inet minifirewall minifirewall_output '{ type filter hook output priority 0 ; policy accept ; }'
 
 # Add set with trusted IP addresses
-$NFT add set inet minifirewall minifirewall_trusted_ips { type ipv4_addr\;}
+$NFT add set inet minifirewall minifirewall_trusted_ips '{ type ipv4_addr ; flags interval ;}'
 $NFT add element inet minifirewall minifirewall_trusted_ips {$(echo $TRUSTEDIPS | sed 's/ /, /g')}
 
-# Add set with  privileged IP addresses
-$NFT add set inet minifirewall minifirewall_privileged_ips { type ipv4_addr\;}
+# Add set with privileged IP addresses
+$NFT add set inet minifirewall minifirewall_privileged_ips '{ type ipv4_addr ; flags interval ;}'
 $NFT add element inet minifirewall minifirewall_privileged_ips {$(echo $PRIVILEGIEDIPS | sed 's/ /, /g')}
 
 # Add set for blocked IP addresses