#!/usr/sbin/nft -f

table inet filter {
	chain input {
		iifname "wwan*" tcp dport 5900 drop comment "drop VNC from wwan"
		tcp dport 5900 accept comment "accept VNC"
	}
}