summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorDavid Oberhollenzer <david.oberhollenzer@tele2.at>2018-07-23 20:20:27 +0200
committerDavid Oberhollenzer <david.oberhollenzer@tele2.at>2018-07-23 20:20:27 +0200
commite15208097cf3e97c8165536c2005e53961227621 (patch)
tree144b6fa9507d6f1abb7316911e665cc001929c7c
parent95d8ddd7134e454feaee1d41623cc839eaede661 (diff)
Add nftables service
Signed-off-by: David Oberhollenzer <david.oberhollenzer@tele2.at>
-rw-r--r--.gitignore1
-rw-r--r--configure.ac1
-rw-r--r--services/Makemodule.am2
-rw-r--r--services/nft.in7
4 files changed, 10 insertions, 1 deletions
diff --git a/.gitignore b/.gitignore
index e28328d..914f9ec 100644
--- a/.gitignore
+++ b/.gitignore
@@ -35,6 +35,7 @@ services/modules
services/hostapd
services/swclock
services/swclocksave
+services/nft
scripts/devfs.sh
scripts/ifrename.sh
diff --git a/configure.ac b/configure.ac
index 564689a..e8fade6 100644
--- a/configure.ac
+++ b/configure.ac
@@ -70,6 +70,7 @@ AC_CONFIG_FILES([services/modules])
AC_CONFIG_FILES([services/hostapd])
AC_CONFIG_FILES([services/swclock])
AC_CONFIG_FILES([services/swclocksave])
+AC_CONFIG_FILES([services/nft])
AC_CONFIG_FILES([scripts/devfs.sh])
AC_CONFIG_FILES([scripts/ifrename.sh])
AC_CONFIG_FILES([scripts/ifcfg.sh])
diff --git a/services/Makemodule.am b/services/Makemodule.am
index 3625715..ab79414 100644
--- a/services/Makemodule.am
+++ b/services/Makemodule.am
@@ -8,7 +8,7 @@ init_DATA += services/vfs services/ifrename services/ifcfg
init_DATA += services/dhcpcd services/dhcpcdmaster services/unbound
init_DATA += services/dnsmasq services/ifdown services/modules
init_DATA += services/network services/hostapd services/swclock
-init_DATA += services/swclocksave
+init_DATA += services/swclocksave services/nft
if USYSLOGD
init_DATA += services/usyslogd
diff --git a/services/nft.in b/services/nft.in
new file mode 100644
index 0000000..21caab0
--- /dev/null
+++ b/services/nft.in
@@ -0,0 +1,7 @@
+description "restore netfilter rule set"
+type wait
+target boot
+after sysinit ifrename
+before network ifcfg
+
+exec nft -f "@ETCPATH@/nftables.rules"