]> git.openstreetmap.org Git - chef.git/history - cookbooks/networking/templates/default/nftables.conf.erb
nftables: allow 169.254.169.0/24 and set log level to notice
[chef.git] / cookbooks / networking / templates / default / nftables.conf.erb
3 days ago Grant Slaternftables: allow 169.254.169.0/24 and set log level...
2023-03-18 Tom HughesMerge interface families
2023-03-11 Tom HughesGeneralise configuration of firewall sets
2023-03-11 Tom HughesFix newline suppression in ERB template
2023-03-08 Tom HughesDon't filter outgoing multicast packets
2023-03-07 Tom HughesFix icmp echo rate limiting
2023-03-07 Tom HughesReintroduce helper support and implement it
2023-03-07 Tom HughesUse interval sets for blocklists
2023-03-07 Tom HughesRename firewall tables to avoid any clash with iptables
2023-03-05 Tom HughesDon't expire connection limit sets
2023-03-05 Tom HughesExpire rate limit sets
2023-03-05 Tom HughesRemove size limits on firewall sets
2023-03-05 Tom HughesEnable rate limits
2023-03-05 Tom HughesAllow AWS DNS queries through the firewall
2023-03-05 Tom HughesMatch interfaces by name so we can start nftables befor...
2023-03-05 Tom HughesLimit NAT to IPv4 interfaces
2023-03-04 Tom HughesFix typo
2023-03-04 Tom HughesFix flag matches to work on 20.04
2023-03-04 Tom HughesHandle machines with no external interface
2023-03-04 Tom HughesBlock unspecified and multicast addresses on the outside
2023-03-04 Tom HughesLimit echo on a per source basis
2023-03-04 Tom HughesMake nftables block various invalid TCP flag combinations
2023-03-04 Tom HughesDon't log rate limited echo request packets
2023-03-04 Tom HughesAvoid dropping third party tables when stopping an...
2023-03-04 Tom HughesEliminate need for dummy addresses in when running...
2023-03-04 Tom HughesRevert "Only flush our table to avoid disrupting other...
2023-03-04 Tom HughesOnly flush our table to avoid disrupting other nftables...
2023-03-04 Tom HughesUse named sets for OSM IP addresses
2023-03-04 Tom HughesUse strings for network families
2023-03-04 Tom HughesAdd support for using an nftables based firewall