rc/friwall
2
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

Use iif/oif instead of iifname/oifname in nftables rules

Browse source 
Following the change in ansible scripts.
This commit is contained in:
Timotej Lazar 2023-05-23 11:31:13 +02:00
parent 22cec64bef
commit 52a5b7cd11
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
web/system.py
View file

@ -113,7 +113,7 @@ map {name} {{
# Print dynamic NAT rules. # Print dynamic NAT rules.
with open(f'{output}/etc/nftables.d/nat.nft', 'w', encoding='utf-8') as f: with open(f'{output}/etc/nftables.d/nat.nft', 'w', encoding='utf-8') as f:
for network, address in nat.items(): for network, address in nat.items():
print(f'iifname @inside oifname @outside ip saddr @{network} snat to {address}', file=f) print(f'iif @inside oif @outside ip saddr @{network} snat to {address}', file=f)
# Print forwarding rules. # Print forwarding rules.
with open(f'{output}/etc/nftables.d/forward.nft', 'w', encoding='utf-8') as f: with open(f'{output}/etc/nftables.d/forward.nft', 'w', encoding='utf-8') as f: