#! nft -f flush chain ip filter output delete chain ip filter output delete table filter add table ip filter add chain ip filter output { type filter hook input priority 0; } # IP address add rule ip filter output ip daddr 192.168.0.1 counter # TCP ports add rule ip filter output tcp dport 22 counter