Skip to content
Snippets Groups Projects
Commit 4623cf26 authored by Rafael László's avatar Rafael László :speech_balloon:
Browse files

Fix errors with nat and ssh

parent 3aef12c1
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
ansible/router/tasks/main.yaml
+ 1
0
View file @ 4623cf26
...@@ -27,6 +27,7 @@ ...@@ -27,6 +27,7 @@
name: sshd name: sshd
state: restarted state: restarted
enabled: yes enabled: yes
daemon_reload: yes
- name: Setup firewall - name: Setup firewall
include_tasks: firewall.yaml include_tasks: firewall.yaml
ansible/router/templates/etc/nftables.conf.j2
+ 3
1
View file @ 4623cf26
...@@ -29,10 +29,12 @@ table inet filter { ...@@ -29,10 +29,12 @@ table inet filter {
type filter hook forward priority 0; type filter hook forward priority 0;
oif $wan accept oif $wan accept
iif $wan drop
ct status dnat accept ct status dnat accept
iif $wan ct state related, established accept iif $wan ct state related, established accept
# Drop everything else
iif $wan drop
} }
# Allow all packets sent by the firewall # Allow all packets sent by the firewall
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment

Hosted with :heart: by KSZK