nix: update patches

[julm/julm-nix.git] / hosts / aubergine / networking / nftables.nix

diff --git a/hosts/aubergine/networking/nftables.nix b/hosts/aubergine/networking/nftables.nix
index a53ca5e1045b97d1f6b283e01332ee21a429f785..7b3bcd83ecddbe7d3f4a24ffaef0f854565c8154 100644 (file)
--- a/hosts/aubergine/networking/nftables.nix
+++ b/hosts/aubergine/networking/nftables.nix
@@ -13,8 +13,6 @@ in
     ruleset = ''
       table inet filter {
         chain input-lan {
-          meta l4proto { udp, tcp } th dport domain counter accept comment "DNS"
-          meta l4proto { udp, tcp } th dport bootps counter accept comment "DHCP"
           tcp dport ssh counter accept comment "SSH"
           udp dport 60000-61000 counter accept comment "Mosh"
           tcp dport 5201 counter accept comment "iperf"
@@ -30,7 +28,6 @@ in
 
         chain output-lan {
           tcp dport { ssh, 2222 } counter accept comment "SSH"
-          counter accept
           tcp dport 5201 counter accept comment "iperf"
         }
         chain output-net {