blob: 0e85f7c20eba085b57eee4c0434ff6a579dea92d (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
|
table inet filter {
set myset {
type ipv4_addr . inet_proto . inet_service
elements = { 192.168.0.12 . tcp . 53,
192.168.0.12 . tcp . 80,
192.168.0.12 . udp . 53,
192.168.0.13 . tcp . 80,
192.168.0.113 . tcp . 22 }
}
chain forward {
type filter hook forward priority filter; policy drop;
ct state established,related accept
ct state new ip daddr . ip protocol . th dport @myset accept
}
}
|