blob: 7bbad87cbb15d9a4a3b5a2d58d50d3684e33575c (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
|
table inet filter {
map portmap {
type inet_service : verdict
flags timeout
elements = { 22 : jump ssh_input }
}
map portaddrmap {
typeof ip daddr . th dport : verdict
flags timeout
elements = { 1.2.3.4 . 22 : jump ssh_input }
}
chain ssh_input {
}
chain other_input {
}
chain wan_input {
ip daddr . tcp dport vmap @portaddrmap
tcp dport vmap @portmap
}
chain prerouting {
type filter hook prerouting priority raw; policy accept;
iif vmap { "lo" : jump wan_input }
}
}
|