allow IPv6 SSH for discuss.grapheneos.org

This could be useful and disabling it isn't necessary for blocking IPv6 connections to the forum.
2024-03-24 15:41:13 -04:00 · 2024-03-24 15:41:13 -04:00 · 0ac67c38c3
parent 7b64ffd4cd
commit 0ac67c38c3
1 changed files with 1 additions and 1 deletions
--- a/nftables-discuss.conf
+++ b/nftables-discuss.conf
@ -15,7 +15,7 @@ table inet filter {
        fib daddr . iif type != { local, broadcast, multicast } counter drop

        # IPv6 interacts badly with IP-based spam filtering
-        meta nfproto ipv6 tcp dport {22, 80, 443} reject with tcp reset
+        meta nfproto ipv6 tcp dport {80, 443} reject with tcp reset

        tcp dport {22, 80, 443} notrack accept
        meta l4proto {icmp, ipv6-icmp} notrack accept