1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25
#!/bin/bash set -e RULESET="table inet filter { set whitelist_v4 { type ipv4_addr; } chain prerouting { type filter hook prerouting priority filter; } } " $NFT -f - <<< "$RULESET" RULESET="table inet filter { chain prerouting { ip daddr @whitelist_v4 } } " $NFT -f - <<< "$RULESET"