ansible/roles/nftables_infra/templates/nftables.d/50-output.conf.j2

{{ ansible_managed | comment }}

table inet output {

	chain conntrack {
		ct state vmap {
			established: accept,
			related: accept,
			invalid: drop,
		}
	}

	chain output {
		type filter hook output priority filter
		policy accept

		jump conntrack

		counter
	}

}
Add nftables role This is a fully static version of the config, and it is meant to be temporary (until I figure out a way to properly configure nftables using ansible…). 2022-01-08 23:41:51 +01:00			`{{ ansible_managed \| comment }}`

			`table inet output {`

			`chain conntrack {`
			`ct state vmap {`
Fix some nftables issues 2022-01-13 13:59:49 +01:00			`established: accept,`
			`related: accept,`
			`invalid: drop,`
Add nftables role This is a fully static version of the config, and it is meant to be temporary (until I figure out a way to properly configure nftables using ansible…). 2022-01-08 23:41:51 +01:00			`}`
			`}`

			`chain output {`
			`type filter hook output priority filter`
			`policy accept`

			`jump conntrack`

			`counter`
			`}`

			`}`