Add nftables firewall
This commit is contained in:
4
rc.firewall/firewall/dependencies
Normal file
4
rc.firewall/firewall/dependencies
Normal file
@ -0,0 +1,4 @@
|
||||
network
|
||||
# In some cases this service might need to be started after the service
|
||||
# below dealing with IP packet forwarding
|
||||
#ip_forward
|
9
rc.firewall/firewall/down
Normal file
9
rc.firewall/firewall/down
Normal file
@ -0,0 +1,9 @@
|
||||
######################################################
|
||||
# Run the rc.firewall_shutdown script (if it exists) #
|
||||
######################################################
|
||||
|
||||
if -t { [ -x /etc/rc.d/rc.firewall_shutdown ] }
|
||||
# Prepend every output with the service's name
|
||||
pipeline -w { sed -u "s/^/firewall: /" }
|
||||
fdmove -c 2 1
|
||||
nft flush ruleset
|
1
rc.firewall/firewall/type
Normal file
1
rc.firewall/firewall/type
Normal file
@ -0,0 +1 @@
|
||||
oneshot
|
11
rc.firewall/firewall/up
Normal file
11
rc.firewall/firewall/up
Normal file
@ -0,0 +1,11 @@
|
||||
####################################################################
|
||||
# Run the rc.firewall script #
|
||||
# #
|
||||
# See the HOWTOs on http://www.netfilter.org/ for documentation on #
|
||||
# setting up a firewall or NAT on Linux #
|
||||
####################################################################
|
||||
|
||||
# Prepend every output with the service's name
|
||||
pipeline -w { sed -u "s/^/firewall: /" }
|
||||
fdmove -c 2 1
|
||||
nft -f /etc/nftables/conf.nft
|
Reference in New Issue
Block a user