~修复nftables启动报错

2026-03-10 23:41:22 +00:00 · 2025-12-27 22:12:02 +08:00
parent 9b4618a37a
commit ac6ccc7d0c
5 changed files with 8 additions and 3 deletions
--- a/ShellCrash.tar.gz
+++ b/ShellCrash.tar.gz
--- a/bin/clashfm.tar.gz
+++ b/bin/clashfm.tar.gz
--- a/bin/version
+++ b/bin/version
@@ -1,4 +1,4 @@
 meta_v=v1.19.17
 singboxr_v=1.13.0-alpha.27
-versionsh=1.9.4alpha4
+versionsh=1.9.4alpha4.1
 GeoIP_v=20251205
--- a/scripts/starts/fw_nftables.sh
+++ b/scripts/starts/fw_nftables.sh
@@ -102,7 +102,10 @@ start_nft_route() { #nftables-route通用工具
    #nft add rule inet shellcrash local_tproxy log prefix \"pre\" level debug
 }
 start_nft_dns() { #nftables-dns
-	[ "$1" = 'prerouting' ] && HOST_IP=$(echo $host_ipv4 | sed 's/ /, /g')
+	[ "$1" = 'prerouting' ] && {
 		HOST_IP=$(echo $host_ipv4 | sed 's/ /, /g')
 		HOST_IP6=$(echo $host_ipv6 | sed 's/ /, /g')
 	}
    [ "$1" = 'output' ] && HOST_IP="127.0.0.0/8, $(echo $local_ipv4 | sed 's/ /, /g')"
    [ "$1" = 'prerouting_vm' ] && HOST_IP="$(echo $vm_ipv4 | sed 's/ /, /g')"
    nft add chain inet shellcrash "$1"_dns { type nat hook $2 priority -100 \; }
@@ -128,6 +131,8 @@ start_nft_dns() { #nftables-dns
    nft add rule inet shellcrash "$1"_dns tcp dport 53 redirect to ${dns_port}
 }
 start_nft_wan() { #nftables公网防火墙
 	HOST_IP=$(echo $host_ipv4 | sed 's/ /, /g')
 	HOST_IP6=$(echo $host_ipv6 | sed 's/ /, /g')
    nft add chain inet shellcrash input { type filter hook input priority -100 \; }
    nft add rule inet shellcrash input iif lo accept #本机请求全放行
 	#端口放行
--- a/2
+++ b/2
@@ -1 +1 @@
-1.9.4alpha4
+1.9.4alpha4.1