From: Tom Hughes <tom@compton.nu>
Date: Sat, 18 Mar 2023 12:10:24 +0000 (+0000)
Subject: Fix nftable stop on gateway machines
X-Git-Url: https://git.openstreetmap.org./chef.git/commitdiff_plain/ee42f14b0dfd0cc85ff1f76b3c366ce0ac158725

Fix nftable stop on gateway machines
---

diff --git a/cookbooks/networking/templates/default/nftables.erb b/cookbooks/networking/templates/default/nftables.erb
index c9ac8972e..778e57a21 100644
--- a/cookbooks/networking/templates/default/nftables.erb
+++ b/cookbooks/networking/templates/default/nftables.erb
@@ -11,7 +11,7 @@ stop() {
   /usr/sbin/nft list set inet chef-filter ip6-blocklist > /var/lib/nftables/ip6-blocklist.nft
   /usr/sbin/nft delete table inet chef-filter
 <% if node[:roles].include?("gateway") -%>
-  /usr/sbin/nft delete table inet chef-nat
+  /usr/sbin/nft delete table ip chef-nat
 <% end -%>
 }