From b684ced6298f4bcdc9bbd3dcb6ceb6d413e04e2d Mon Sep 17 00:00:00 2001
From: Koushik Dutta <koushd@gmail.com>
Date: Sun, 23 Feb 2025 18:54:38 -0800
Subject: [PATCH] install: nftables

---
 install/docker/Dockerfile.systemd | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/install/docker/Dockerfile.systemd b/install/docker/Dockerfile.systemd
index b5a63ce00..0ab6affee 100644
--- a/install/docker/Dockerfile.systemd
+++ b/install/docker/Dockerfile.systemd
@@ -1,10 +1,14 @@
 ARG BASE="noble-lite"
 FROM ghcr.io/koush/scrypted-common:${BASE}
 
-RUN apt -y update && apt -y install nano net-tools dnsutils dnsmasq ifupdown vlan bridge-utils iptables netplan.io
+RUN apt -y update && apt -y install nano net-tools dnsutils dnsmasq ifupdown vlan bridge-utils iptables netplan.io nftables
 RUN rm -f /etc/systemd/system/multi-user.target.wants/dnsmasq.service
 RUN rm -f /etc/systemd/system/sysinit.target.wants/systemd-resolved.service
 
+RUN bash -c 'echo include "/etc/nftables.d/*.conf"\; >> /etc/nftables.conf'
+RUN mkdir -p /etc/nftables.d
+RUN systemctl enable nftables
+
 WORKDIR /
 # cache bust
 ADD "https://www.random.org/cgi-bin/randbyte?nbytes=10&format=h" skipcache