main/nftables: change default save location to /etc/firewall.nft

This is a configuration and so should be stored in /etc. Also nftables format is very well suited for hand-written firewall configuration, not just for dumping current rules managed manually by ntf tool or generated by some shell script. However, to be consistent with iptables package, I kept save_on_stop enabled by default.
author: Jakub Jirutka <jakub@jirutka.cz> 2018-04-01 17:59:21 +0200
committer: Jakub Jirutka <jakub@jirutka.cz> 2018-04-01 19:03:36 +0200
commit: 1ad0a892bd0a2ed6f3cb0b6e4c872439fb37e394 (patch)
tree: 8a1be86e44ef300bbab83d6c9b297a711653eb36 /main/nftables/nftables.confd
parent: 2221432434ddd269048e71a34cda6ebafbddcc9c (diff)
download: aports-1ad0a892bd0a2ed6f3cb0b6e4c872439fb37e394.tar.bz2
aports-1ad0a892bd0a2ed6f3cb0b6e4c872439fb37e394.tar.xz
1 files changed, 1 insertions, 1 deletions
diff --git a/main/nftables/nftables.confd b/main/nftables/nftables.confd
index 41ca06cf05..87fa8f2eae 100644
--- a/main/nftables/nftables.confd
+++ b/main/nftables/nftables.confd
@@ -2,7 +2,7 @@
 
 # Location of file with nftables rules to restore on service start,
 # and save rules to on service stop when $save_on_stop is enabled.
-#rules_file="/var/lib/nftables/rules-save"
+#rules_file="/etc/firewall.nft"
 
 # Options to pass to nft on save.
 #save_options="-n"
author	Jakub Jirutka <jakub@jirutka.cz>	2018-04-01 17:59:21 +0200
committer	Jakub Jirutka <jakub@jirutka.cz>	2018-04-01 19:03:36 +0200
commit	1ad0a892bd0a2ed6f3cb0b6e4c872439fb37e394 (patch)
tree	8a1be86e44ef300bbab83d6c9b297a711653eb36 /main/nftables/nftables.confd
parent	2221432434ddd269048e71a34cda6ebafbddcc9c (diff)
download	aports-1ad0a892bd0a2ed6f3cb0b6e4c872439fb37e394.tar.bz2 aports-1ad0a892bd0a2ed6f3cb0b6e4c872439fb37e394.tar.xz