blob: 6511c7b20cb60cbdd0021287330cd1d5a0e95cd0 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
|
#!/bin/bash
set -e
RULESET="table ip x {
chain y {
ct state invalid drop
ct state established,related accept
}
chain z {
tcp dport { 1 } accept
tcp dport 2-3 drop
}
}"
$NFT -o -f - <<< $RULESET
|