From 1ad0a892bd0a2ed6f3cb0b6e4c872439fb37e394 Mon Sep 17 00:00:00 2001
From: Jakub Jirutka <jakub@jirutka.cz>
Date: Sun, 1 Apr 2018 17:59:21 +0200
Subject: main/nftables: change default save location to /etc/firewall.nft

This is a configuration and so should be stored in /etc. Also nftables
format is very well suited for hand-written firewall configuration, not
just for dumping current rules managed manually by ntf tool or generated
by some shell script.

However, to be consistent with iptables package, I kept save_on_stop
enabled by default.
---
 main/nftables/nftables.confd | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'main/nftables/nftables.confd')

diff --git a/main/nftables/nftables.confd b/main/nftables/nftables.confd
index 41ca06cf05..87fa8f2eae 100644
--- a/main/nftables/nftables.confd
+++ b/main/nftables/nftables.confd
@@ -2,7 +2,7 @@
 
 # Location of file with nftables rules to restore on service start,
 # and save rules to on service stop when $save_on_stop is enabled.
-#rules_file="/var/lib/nftables/rules-save"
+#rules_file="/etc/firewall.nft"
 
 # Options to pass to nft on save.
 #save_options="-n"
-- 
cgit v1.2.3