Jump to content
Not connected, Your IP: 3.144.253.195
AirVPN
Sign in to follow this  
Followers 0
FlyawayRavage

How to set an nftables rule in conjunction with killswitch?

By FlyawayRavage, ... in Troubleshooting and Problems

Recommended Posts

FlyawayRavage    0

FlyawayRavage
Posted ...

Debian 11, nftables v1.0.6, Bluetit 1.3.0.

Hello all,

I'm trying to add an nftables input rule. In my very limited understanding the standard way to do this would be add it into /etc/nftables.conf. Would that still work if using bluetit persistent network-lock feature? Based on a cursory look through bluetit's code it seems that bluetit flushes the nftable rules and then replaces them with a full working kill-switch configuration. That would prevent my input rule from taking effect, correct? If so, how do I go about adding my nftables rule in conjunction with bluetit's killswitch?

My first thought was a small daemon to 

nft insert rule filter input ip saddr <badip> drop
After bluetit has loaded on boot, but it occurs to me that should bluetit ever disable/enable network-lock then the rule would get overwritten.

Thanks!

Share this post

Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
  • Security Check
    Play CAPTCHA Audio
    Refresh Image
Sign in to follow this  
Followers 0
Go To Topic Listing
×
×
  • Create New...