Jump to content

Firejail: Difference between revisions

Firejail (view source)

Revision as of 10:21, 13 February 2023

124 bytes added ,  13 February 2023
Use networking.nat instead of custom nftables rule
VisualWikitext
imported>Onny
(Updated Tor instruction to use nftables instead of iptables)
imported>Onny
(Use networking.nat instead of custom nftables rule)
Line 83: Line 83:
         chain PREROUTING {
         chain PREROUTING {
           type nat hook prerouting priority dstnat; policy accept;
           type nat hook prerouting priority dstnat; policy accept;
          iifname "tornet" udp dport 53 dnat to 127.0.0.1:5353
           iifname "tornet" meta l4proto tcp dnat to 127.0.0.1:9040
           iifname "tornet" meta l4proto tcp dnat to 127.0.0.1:9040
         }
         }
       }
       }
     '';
     '';
  };
  nat = {
    internalInterfaces = [ "tornet " ];
    forwardPorts = [
      {
        destination = "127.0.0.1:5353";
        proto = "udp";
        sourcePort = 53;
      }
    ];
   };
   };
   firewall = {
   firewall = {
Anonymous user
Retrieved from "https://wiki.nixos.org/wiki/Special:MobileDiff/10249"