45ea9bec29
This seems to fix the last missing piece to getting the hotspot stuff working, at least when it's set up with networkmanager (I haven't tested other methods, but assume this rule is still needed there too...) fixes #1198
15 lines
326 B
Text
15 lines
326 B
Text
#!/usr/sbin/nft -f
|
|
|
|
table inet filter {
|
|
chain input {
|
|
|
|
# allow DNS from wlan*
|
|
iifname "wlan*" tcp dport 53 accept comment "Accept DNS over TCP on wlan*"
|
|
iifname "wlan*" udp dport 53 accept comment "Accept DNS over UDP on wlan*"
|
|
|
|
}
|
|
|
|
chain forward {
|
|
iifname "wlan*" accept comment "Accept forwarding from wlan*"
|
|
}
|
|
}
|