API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Sep 27th, 2019
227
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.63 KB | None | 0 0
raw download clone embed print report
  1. #!/usr/sbin/nft -f
  2.  
  3. flush ruleset
  4.  
  5. table inet filter {
  6. chain input {
  7. type filter hook input priority 0; policy drop;
  8. iif "lo" accept
  9. ct state invalid drop
  10. ct state {established, related} accept
  11. tcp dport ssh accept
  12. }
  13. chain forward {
  14. type filter hook forward priority 0; policy accept;
  15. }
  16. chain output {
  17. type filter hook output priority 0; policy accept;
  18. ip ttl set 65
  19. ip6 hoplimit set 65
  20. }
  21. }
  22.  
  23. table ip nat {
  24. chain prerouting {
  25. type nat hook prerouting priority 0; policy accept;
  26. }
  27.  
  28. chain postrouting {
  29. type nat hook postrouting priority 100; policy accept;
  30. oif wlan0 masquerade
  31. }
  32. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!