Displaying 1 result from an estimated 1 matches for "allow_ssh_net".
2020 Jan 30
2
[Bug 1402] New: Race errors with nft
...tate established,related accept
iifname "lo" counter accept
meta l4proto icmp counter accept
meta l4proto ipv6-icmp counter accept
tcp dport 22 accept
}
}
```
R2.tf
```
#!/usr/sbin/nft -f
flush ruleset
add table inet my-filter
add set inet my-filter ALLOW_SSH_NET {
type ipv4_addr;
flags interval;
elements={
0.0.0.0/0
}
}
add chain inet my-filter FORWARD {type filter hook forward priority 0; policy
drop;}
add chain inet my-filter INPUT {type filter hook input priority 0; policy
drop;}
add rule inet my-filter INPUT ip protocol icmp accept
add ru...