Viyurz/vps
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

nftables fix ipv6 (allow ICMP)

Browse source
This commit is contained in:
Viyurz 2023-11-29 07:45:02 +00:00
parent a37eebfd29
commit 9de094f09f
No known key found for this signature in database
1 changed files with 3 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
nftables.conf
View file

@ -11,9 +11,9 @@ table inet filter {
ct state invalid drop ct state invalid drop
ct state { established, related } accept ct state { established, related } accept
# Allow ICMP ping # Allow ICMP
meta nfproto ipv4 icmp type echo-request limit rate 1/second accept meta l4proto icmp limit rate 2/second accept
meta nfproto ipv6 icmpv6 type echo-request limit rate 1/second accept meta l4proto ipv6-icmp limit rate 2/second accept
# SSH # SSH
tcp dport 995 limit rate 15/minute accept tcp dport 995 limit rate 15/minute accept