API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Aug 10th, 2022
26
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.65 KB | None | 0 0
raw download clone embed print report
  1. #!/usr/sbin/nft -f
  2.  
  3. flush ruleset
  4.  
  5. table ip nat {
  6. chain postrouting {
  7. type nat hook postrouting priority srcnat; policy accept;
  8. oifname "wlan0" meta cgroup 1114129 counter masquerade
  9. }
  10. }
  11. table ip mangle {
  12. chain markit {
  13. type route hook output priority filter; policy accept;
  14. meta cgroup 1114129 counter meta mark set 0x0000000b
  15. }
  16. }
  17.  
  18. table ip killswitch {
  19. chain output {
  20. type filter hook output priority filter; policy accept;
  21. oifname "lo" counter accept
  22. oifname "tun0" counter accept
  23. meta cgroup 1114129 counter accept
  24. counter reject with icmp type admin-prohibited
  25. }
  26. }
  27.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!