fix

2024-09-28 13:15:52 -06:00 · 2024-09-28 13:15:52 -06:00 · e9ba6747d6
commit e9ba6747d6
parent 9ee3593c05
2 changed files with 11 additions and 15 deletions
--- a/firewall.sh
+++ b/firewall.sh
@ -16,16 +16,15 @@ portConfig["https"]="443"
 portConfig["http"]="80"
 portConfig["cups"]="631"
 portConfig["WireGuard"]="57692"
-portConfig["AdGuard-1"]="3000"
+#portConfig["AdGuard-1"]="3000"
-portConfig["AdGuard-2"]="8082"
+#portConfig["AdGuard-2"]="8082"
-portConfig["AdGuard-3"]="853"
+#portConfig["AdGuard-3"]="853"
-portConfig["Uptime"]="4001"
+#portConfig["Uptime"]="4001"
-portConfig["DNS-1"]="53"
+#portConfig["DNS-1"]="53"
-portConfig["DNS-2"]="67"
+#portConfig["DNS-2"]="67"
-portConfig["DNS-3"]="68"
+#portConfig["DNS-3"]="68"
 portConfig["CUPS-1"]="631"
 portConfig["CUPS-2"]="5353"
 #portConfig["Bitcoin-1"]="8333"
 #portConfig["Bitcoin-2"]="8332"
 #portConfig["Bitcoin-3"]="8333"
 #portConfig["Bitcoin-4"]="4050"
@ -45,7 +44,7 @@ portConfig["SyncThing-3"]="21027"
 portConfig["Jellyfin-1"]="8096"
 portConfig["Jellyfin-1"]="7359"
 portConfig["SSH"]="22"
-MACHINES=(127.0.0.1)
+MACHINES=(192.168.0.55)
 VIRT_BRIDGE="virbr0"
 #### NFT CONFIG ####
 #
--- a/ipv4-filter.nft
+++ b/ipv4-filter.nft
@ -3,8 +3,7 @@ table filter {
 	chain input		{ type filter hook input priority 0;policy drop;}
 	chain forward		{ type filter hook forward priority 0;
 				iifname wg0 accept;
-				iifname home accept;
+				iifname enp11s0 accept;
 				iifname eno1 accept;
 				ct status dnat accept;
 				}
 	chain output		{ type filter hook output priority 0;  }
@ -13,9 +12,7 @@ table filter {
 table nat {
 	chain prerouting {  type nat hook prerouting priority -100; policy accept;}
 	chain postrouting {  type nat hook postrouting priority 100;
-	iifname wg0 oifname eno1 masquerade;
+	iifname wg0 oifname enp11s0 masquerade;
-	iifname home oifname eno1 masquerade;
+	iifname enp11s0 oifname wg0 masquerade;
 	iifname eno1 oifname wg0 masquerade;
 	iifname eno1 oifname home masquerade;
 	}
 }