Hallo zusammen,
seit VanPi OS 2.09 oder früher, werden bei jedem Node-Red Deploy Regeln zu nftables hinzugefügt.
vorher
table inet filter {
chain input {
type filter hook input priority filter; policy accept;
}
chain forward {
type filter hook forward priority filter; policy accept;
}
chain output {
type filter hook output priority filter; policy accept;
}
}
nachher
table inet filter {
chain input {
type filter hook input priority filter; policy accept;
}
chain forward {
type filter hook forward priority filter; policy accept;
}
chain output {
type filter hook output priority filter; policy accept;
}
}
table ip nm-shared-wlan0 {
chain nat_postrouting {
type nat hook postrouting priority srcnat; policy accept;
ip saddr 192.168.4.0/24 ip daddr != 192.168.4.0/24 masquerade
}
chain filter_forward {
type filter hook forward priority filter; policy accept;
ip daddr 192.168.4.0/24 oifname "wlan0" ct state { established, related } accept
ip saddr 192.168.4.0/24 iifname "wlan0" accept
iifname "wlan0" oifname "wlan0" accept
iifname "wlan0" reject
oifname "wlan0" reject
}
}
Hat jemand eine Ahnung was das auslöst?
Ich muss, um vom PC an meine 4 Tasmotas zu kommen, jedes mal ein “systemctl restart nftables.service“ ausführen.
Thx Jürgen