2021-08-17 17:06:56 -07:00
|
|
|
#!/usr/sbin/nft -f
|
|
|
|
|
|
|
|
|
|
table inet filter {
|
|
|
|
|
chain input {
|
|
|
|
|
|
|
|
|
|
# allow DNS from wlan*
|
|
|
|
|
iifname "wlan*" tcp dport 53 accept comment "Accept DNS over TCP on wlan*"
|
|
|
|
|
iifname "wlan*" udp dport 53 accept comment "Accept DNS over UDP on wlan*"
|
|
|
|
|
|
|
|
|
|
}
|
2021-10-21 23:33:30 -07:00
|
|
|
|
|
|
|
|
chain forward {
|
|
|
|
|
iifname "wlan*" accept comment "Accept forwarding from wlan*"
|
|
|
|
|
}
|
2021-08-17 17:06:56 -07:00
|
|
|
}
|
