drop unnecessary nftables udp condition

2024-09-27 19:15:43 +00:00 · 2024-03-30 11:51:33 -04:00 · 2024-03-30 11:51:33 -04:00 · e655732304
commit e655732304
parent 39b7e1f479
2 changed files with 2 additions and 2 deletions
--- a/nftables-ns1.conf
+++ b/nftables-ns1.conf
@ -100,7 +100,7 @@ table inet filter {
        skuid { chrony, geoipupdate } meta l4proto { tcp, udp } th sport >= 1024 th dport 53 accept

        skuid powerdns meta l4proto tcp th sport 54 th dport >= 1024 accept
-        skuid http meta l4proto { tcp, udp } th sport >= 1024 th dport 54 accept
+        skuid http meta l4proto tcp th sport >= 1024 th dport 54 accept

        skuid powerdns meta l4proto tcp th sport 81 th dport >= 1024 accept

--- a/nftables-ns2.conf
+++ b/nftables-ns2.conf
@ -105,7 +105,7 @@ table inet filter {
        skuid { chrony, geoipupdate } meta l4proto { tcp, udp } th sport >= 1024 th dport 53 accept

        skuid powerdns meta l4proto tcp th sport 54 th dport >= 1024 accept
-        skuid http meta l4proto { tcp, udp } th sport >= 1024 th dport 54 accept
+        skuid http meta l4proto tcp th sport >= 1024 th dport 54 accept

        skuid powerdns meta l4proto tcp th sport 81 th dport >= 1024 accept