summaryrefslogtreecommitdiffstats
path: root/extensions/libipt_icmp.txlate
diff options
context:
space:
mode:
Diffstat (limited to 'extensions/libipt_icmp.txlate')
-rw-r--r--extensions/libipt_icmp.txlate9
1 files changed, 6 insertions, 3 deletions
diff --git a/extensions/libipt_icmp.txlate b/extensions/libipt_icmp.txlate
index 434f8cc4..e7208d8b 100644
--- a/extensions/libipt_icmp.txlate
+++ b/extensions/libipt_icmp.txlate
@@ -1,8 +1,11 @@
iptables-translate -t filter -A INPUT -m icmp --icmp-type echo-reply -j ACCEPT
-nft add rule ip filter INPUT icmp type echo-reply counter accept
+nft 'add rule ip filter INPUT icmp type echo-reply counter accept'
iptables-translate -t filter -A INPUT -m icmp --icmp-type 3 -j ACCEPT
-nft add rule ip filter INPUT icmp type destination-unreachable counter accept
+nft 'add rule ip filter INPUT icmp type destination-unreachable counter accept'
iptables-translate -t filter -A INPUT -m icmp ! --icmp-type 3 -j ACCEPT
-nft add rule ip filter INPUT icmp type != destination-unreachable counter accept
+nft 'add rule ip filter INPUT icmp type != destination-unreachable counter accept'
+
+iptables-translate -t filter -A INPUT -m icmp --icmp-type any -j ACCEPT
+nft 'add rule ip filter INPUT ip protocol icmp counter accept'