LogalDeveloper/Arch-Linux-Installer
0
Fork 0
Code Issues Activity

Added rule for rejecting outbound HTTP/3 connections.

Browse Source
This commit is contained in:
Logan Fick
2025-12-16 09:20:07 -05:00
parent a066063f6a
commit e6d4769956
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
etc/nftables.conf
View File

@@ -25,6 +25,7 @@ table inet filter {
ct state invalid counter drop comment "drop invalid" ct state invalid counter drop comment "drop invalid"
meta l4proto { icmp, ipv6-icmp } counter accept comment "accept ICMP" meta l4proto { icmp, ipv6-icmp } counter accept comment "accept ICMP"
udp dport https ct state new counter reject comment "reject new HTTP/3 connections"
ct state new counter accept comment "accept new outbound connections" ct state new counter accept comment "accept new outbound connections"
counter comment "count any other dropped traffic" counter comment "count any other dropped traffic"