blob: a960b39537728c04985658d8707a9fd10121adc5 (
plain)
1
2
3
4
5
|
iptables-translate -A INPUT -m policy --pol ipsec --dir in
nft 'add rule ip filter INPUT meta secpath exists counter'
iptables-translate -A INPUT -m policy --pol none --dir in
nft 'add rule ip filter INPUT meta secpath missing counter'
|