From 17fb145013e8b372f135736491f8e930dbf766cb Mon Sep 17 00:00:00 2001
From: Karl Grube <karl@hudlergrube.com>
Date: Wed, 8 Nov 2023 15:25:52 +0100
Subject: [PATCH] blocked the internet

---
 templates/int_rtr.nft.j2 | 1 -
 1 file changed, 1 deletion(-)

diff --git a/templates/int_rtr.nft.j2 b/templates/int_rtr.nft.j2
index 45b41c4..6e29856 100644
--- a/templates/int_rtr.nft.j2
+++ b/templates/int_rtr.nft.j2
@@ -42,7 +42,6 @@ table inet filter {
 			icmpv6 type { destination-unreachable, packet-too-big, time-exceeded, parameter-problem, mld-listener-query, mld-listener-report, mld-listener-reduction, nd-neighbor-solicit, nd-router-solicit, nd-neighbor-advert, ind-neighbor-solicit, ind-neighbor-advert, mld2-listener-report, echo-request } accept
 			ct state established, related accept
 			iif == lo accept
-			tcp dport ssh accept
 {% for range in dc_ranges %}
 			ip{% if range|ansible.utils.ipv6%}6{% endif %} saddr {{range}} accept
 {% endfor %}
-- 
GitLab