From cb8701e6d70c545df8b596f453808eaa39db4aa3 Mon Sep 17 00:00:00 2001
From: Daniel Micay <daniel.micay@grapheneos.org>
Date: Thu, 6 Nov 2025 02:07:49 -0500
Subject: [PATCH] nftables: style fix

---
 etc/nftables/nftables-discuss.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/etc/nftables/nftables-discuss.conf b/etc/nftables/nftables-discuss.conf
index d2357a7..64d0437 100644
--- a/etc/nftables/nftables-discuss.conf
+++ b/etc/nftables/nftables-discuss.conf
@@ -49,7 +49,7 @@ table inet filter {
         fib daddr . iif type != { local, broadcast, multicast } counter drop
 
         # IPv6 interacts badly with IP-based spam filtering
-        meta nfproto ipv6 tcp dport {80, 443} drop
+        meta nfproto ipv6 tcp dport { 80, 443 } drop
 
         # handle new TCP connections beyond rate limit via synproxy to avoid conntrack table exhaustion
         tcp dport $tcp-ports-full tcp flags syn limit rate over {{synproxy_threshold}}/second burst {{synproxy_threshold}} packets counter notrack accept