Firejail: Difference between revisions
imported>Onny Updated Tor instruction to use nftables instead of iptables |
imported>Onny Use networking.nat instead of custom nftables rule |
||
Line 83: | Line 83: | ||
chain PREROUTING { | chain PREROUTING { | ||
type nat hook prerouting priority dstnat; policy accept; | type nat hook prerouting priority dstnat; policy accept; | ||
iifname "tornet" meta l4proto tcp dnat to 127.0.0.1:9040 | iifname "tornet" meta l4proto tcp dnat to 127.0.0.1:9040 | ||
} | } | ||
} | } | ||
''; | ''; | ||
}; | |||
nat = { | |||
internalInterfaces = [ "tornet " ]; | |||
forwardPorts = [ | |||
{ | |||
destination = "127.0.0.1:5353"; | |||
proto = "udp"; | |||
sourcePort = 53; | |||
} | |||
]; | |||
}; | }; | ||
firewall = { | firewall = { |