Fix nftable stop on gateway machines

author Tom Hughes <tom@compton.nu>

Sat, 18 Mar 2023 12:10:24 +0000 (12:10 +0000)

committer Tom Hughes <tom@compton.nu>

Sat, 18 Mar 2023 12:10:24 +0000 (12:10 +0000)
author Tom Hughes <tom@compton.nu>
Sat, 18 Mar 2023 12:10:24 +0000 (12:10 +0000)
committer Tom Hughes <tom@compton.nu>
Sat, 18 Mar 2023 12:10:24 +0000 (12:10 +0000)
diff --git a/cookbooks/networking/templates/default/nftables.erb b/cookbooks/networking/templates/default/nftables.erb

index c9ac8972ea3a1cf2b11ef6d7676a99d0cbb92422..778e57a218768fb84fe03ba4c343b8ad7fddc4d7 100644 (file)
--- a/cookbooks/networking/templates/default/nftables.erb
+++ b/cookbooks/networking/templates/default/nftables.erb
@@ -11,7 +11,7 @@ stop() {
    /usr/sbin/nft list set inet chef-filter ip6-blocklist > /var/lib/nftables/ip6-blocklist.nft
    /usr/sbin/nft delete table inet chef-filter
  <% if node[:roles].include?("gateway") -%>
-  /usr/sbin/nft delete table inet chef-nat
+  /usr/sbin/nft delete table ip chef-nat
  <% end -%>
  }
author	Tom Hughes <tom@compton.nu>
	Sat, 18 Mar 2023 12:10:24 +0000 (12:10 +0000)
committer	Tom Hughes <tom@compton.nu>
	Sat, 18 Mar 2023 12:10:24 +0000 (12:10 +0000)