tp6_firewall

2025-05-05 09:08:44 +02:00
parent ef6152e080
commit 93a00bc152
3 changed files with 108 additions and 0 deletions
--- a/sisr1/tp06-firewall/fw_part1.nft
+++ b/sisr1/tp06-firewall/fw_part1.nft
@@ -0,0 +1,13 @@
+table ip ipfilter {
+        chain routing {
+                type filter hook forward priority filter; policy accept;
+                icmp type echo-request iif { "enp0s3", "enp0s9" } drop
+                icmp type { echo-reply, echo-request } accept
+                drop
+        }
+ 
+        chain system_in {
+                type filter hook input priority filter; policy accept;
+                icmp type echo-request iif { "enp0s3", "enp0s9" } drop
+        }
+}