aboutsummaryrefslogtreecommitdiff
path: root/test/example_config/wg1/nftables.conf
diff options
context:
space:
mode:
Diffstat (limited to 'test/example_config/wg1/nftables.conf')
-rw-r--r--test/example_config/wg1/nftables.conf33
1 files changed, 33 insertions, 0 deletions
diff --git a/test/example_config/wg1/nftables.conf b/test/example_config/wg1/nftables.conf
new file mode 100644
index 0000000..048178a
--- /dev/null
+++ b/test/example_config/wg1/nftables.conf
@@ -0,0 +1,33 @@
+table ip wg1 {
+ chain preraw {
+ type filter hook prerouting priority raw; policy accept;
+ iifname != "wg1" ip daddr 10.55.127.342 fib saddr type != local drop;
+ }
+
+ chain premangle {
+ type filter hook prerouting priority mangle; policy accept;
+ meta l4proto udp meta mark set ct mark;
+ }
+
+ chain postmangle {
+ type filter hook postrouting priority mangle; policy accept;
+ meta l4proto udp meta mark 0x25db0647 ct mark set meta mark;
+ }
+}
+
+table ip6 wg1 {
+ chain preraw {
+ type filter hook prerouting priority raw; policy accept;
+ iifname != "wg1" ip6 daddr ab00:aaaa:aaa:aa02::5:abcd fib saddr type != local drop;
+ }
+
+ chain premangle {
+ type filter hook prerouting priority mangle; policy accept;
+ meta l4proto udp meta mark set ct mark;
+ }
+
+ chain postmangle {
+ type filter hook postrouting priority mangle; policy accept;
+ meta l4proto udp meta mark 0x25db0647 ct mark set meta mark;
+ }
+}
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-10 05:27:10 +0000