firewall?

modules/server/nftables/default.nix

@@ -28,12 +28,6 @@ in{
           ${if cfg.wireguard then ''tcp dport {1515} accept'' else ""}
           ${if cfg.wireguard then ''udp dport {1515} accept'' else ""}
         }
-        chain forward {
-          type filter hook forward priority filter; policy drop;
-          ct state established,related accept
-          iifname { "podman*", "veth*" } accept
-          oifname { "podman*", "veth*" } accept
-        }
       }
       ${if cfg.nftables.enable then ''
       table inet nat {