On Sun, Dec 08, 2019 at 12:49:33PM +0100, Sven Hartge wrote:
> > What is a good way to fix this problem?
>
> Do you use "iif" or "oif" to match on the interface for libvirt?
>
> If yes, then you need to change this to use "iifname" or "oifname" ,
> because "iif"/"oif" can only be used to match on e
Benedikt Tuchen wrote:
> I use nftables as my firewall and setup the nftables.conf today. My
> firewall rules are based on whitelisting. Everything is dropped from
> INPUT and FORWARD as long as there is no specific rule for it. For
> my libvirt network interface virbr1 there are also some rules.
Hello,
I use nftables as my firewall and setup the nftables.conf today. My
firewall rules are based on whitelisting. Everything is dropped from
INPUT and FORWARD as long as there is no specific rule for it. For
my libvirt network interface virbr1 there are also some rules. I
enabled the nftables.s
3 matches
Mail list logo
