I have a Linux host acting as a router with forwarding enabled /proc/sys/net/ipv4/ip_forward = 1. It is connected to two wifi networks (wlan0 and wlan1) and it has internet access on eth0. For reasons to not explain here for brevity, I need to keep the default forward policy as DROP and just open the forwarding as needed. I have set these nft rules: