Revert "Only flush our table to avoid disrupting other nftables users"

author Tom Hughes <tom@compton.nu>

Sat, 4 Mar 2023 13:00:40 +0000 (13:00 +0000)

committer Tom Hughes <tom@compton.nu>

Sat, 4 Mar 2023 13:00:40 +0000 (13:00 +0000)
author Tom Hughes <tom@compton.nu>
Sat, 4 Mar 2023 13:00:40 +0000 (13:00 +0000)
committer Tom Hughes <tom@compton.nu>
Sat, 4 Mar 2023 13:00:40 +0000 (13:00 +0000)
diff --git a/cookbooks/networking/templates/default/nftables.conf.erb b/cookbooks/networking/templates/default/nftables.conf.erb

index 6a2d72b8e7bd48e624f4a9f9b8fc4f6237fd5d19..63f45a0c837eb33dd6cc6c07534193950ef5ee0b 100644 (file)
--- a/cookbooks/networking/templates/default/nftables.conf.erb
+++ b/cookbooks/networking/templates/default/nftables.conf.erb
@@ -5,7 +5,7 @@ define external-interfaces = { <%= @interfaces.sort.uniq.join(", ") %> }
  define ip-private-addresses = { 10.0.0.0/8, 127.0.0.0/8, 169.254.0.0/16, 172.16.0.0/12, 192.0.2.0/24, 192.168.0.0/16 }
  define ip6-private-addresses = { 2001:db8::/32, fc00::/7 }
  
-flush table inet filter
+flush ruleset
  
  table inet filter {
    set ip-osm-addresses {
author	Tom Hughes <tom@compton.nu>
	Sat, 4 Mar 2023 13:00:40 +0000 (13:00 +0000)
committer	Tom Hughes <tom@compton.nu>
	Sat, 4 Mar 2023 13:00:40 +0000 (13:00 +0000)