Thanks for the suggestions from all whom responded, I have the nft rules
in place and its working like a champ.
On 4/24/19 11:11 AM, Paul Fontenot wrote:
Good afternoon,
How would one force all traffic out of a particular interface? I am
trying to force all traffic out of a vpn interface but I'm not having
any luck - if I change the default policy from accept to drop and try
this block below I get nothing :/
chain output {
type filter hook output priority 0; policy drop;
counter
oif { lo, tun0 } accept
oif { enp3s0f1, wlp2s0 } ip daddr 192.168.0.0/24 accept
oif { enp3s0f1, wlp2s0 } drop
oif { vmnet8 } accept
}
Can I do what I'm trying to do with nftables or should I toss it and go
back to iptables?
Thanks,
Paul
