enpls/custom-config
5
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

update nftables

Browse source
This commit is contained in:
Mael G. 2024-06-03 21:58:21 +02:00
parent 6d55fb5efe
commit 60e2ecca40
3 changed files with 7 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

BIN
.DS_Store vendored Normal file
View file

Binary file not shown.

1
.gitignore vendored Normal file
View file

@ -0,0 +1 @@
.vscode/

9
rt-mep/nftables.conf
View file

@ -1,5 +1,4 @@
#!/usr/sbin/nft -f
# /etc/nftables.conf
flush ruleset
@ -8,11 +7,15 @@ define LAN = eth1
define WAN = eth0
define LAN_SUBNET = 10.100.2.0/24
define WAN_IP = 45.139.163.92
define FRONT_HTTP = 10.100.2.254
define RICK_VM = 10.100.2.252
table inet nat {
chain prerouting {
type nat hook prerouting priority 0;
iifname $WAN tcp dport {80, 443, 2222, 2223} dnat ip to $FRONT_HTTP;
iifname $WAN udp dport {443} dnat ip to $FRONT_HTTP;
iifname $WAN tcp dport {62142,62169,62420} dnat ip to $RICK_VM;
}
chain postrouting {
@ -40,4 +43,4 @@ table inet filter {
chain output {
type filter hook output priority 0;
}
}
}