diff options
author | nin <nineinchnade@gmail.com> | 2017-09-06 00:56:26 +0200 |
---|---|---|
committer | nin <nineinchnade@gmail.com> | 2017-09-06 00:56:26 +0200 |
commit | 59940cb436215341e33f591d7994e975ed4bf61d (patch) | |
tree | 76118981a58ef85d5dabc4db51c4a62ceaed8238 /nin/2configs/default.nix | |
parent | 6ed58852c0cea912f81b6bc2214289353e07101a (diff) |
nin: allow icmp6
Diffstat (limited to 'nin/2configs/default.nix')
-rw-r--r-- | nin/2configs/default.nix | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/nin/2configs/default.nix b/nin/2configs/default.nix index 212fd368e..68521c6dd 100644 --- a/nin/2configs/default.nix +++ b/nin/2configs/default.nix @@ -158,6 +158,7 @@ with import <stockholm/lib>; filter.INPUT.rules = [ { predicate = "-m conntrack --ctstate RELATED,ESTABLISHED"; target = "ACCEPT"; precedence = 10001; } { predicate = "-p icmp"; target = "ACCEPT"; precedence = 10000; } + { predicate = "-p ipv6-icmp"; target = "ACCEPT"; v4 = false; precedence = 10000; } { predicate = "-i lo"; target = "ACCEPT"; precedence = 9999; } { predicate = "-p tcp --dport 22"; target = "ACCEPT"; precedence = 9998; } { predicate = "-p tcp -i retiolum"; target = "REJECT --reject-with tcp-reset"; precedence = -10000; } |