pmaports/main/postmarketos-config-nftables/rules/51_docker.nft

12 lines
330 B
Text
Raw Normal View History

#!/usr/sbin/nft -f
table inet filter {
chain input {
iifname "docker*" accept comment "Allow incoming network traffic from Docker"
}
chain forward {
iifname "docker*" accept comment "Allow outgoing network traffic from Docker"
ct state {established, related} counter accept comment "accept established connections"
}
}