diff options
author | Kenny Ballou <kballou@devnulllabs.io> | 2021-02-24 18:33:19 -0700 |
---|---|---|
committer | Kenny Ballou <kballou@devnulllabs.io> | 2021-02-24 18:33:19 -0700 |
commit | a58ee47301a46fe7d319467b73491dcfcae885d1 (patch) | |
tree | 80c2f19dfd14e7879f3ee30e03a063150b9accd4 /eligos | |
parent | b54a13223c10f583aa2f17c9db7ee26588dad7d0 (diff) | |
download | cfg.nix-a58ee47301a46fe7d319467b73491dcfcae885d1.tar.gz cfg.nix-a58ee47301a46fe7d319467b73491dcfcae885d1.tar.xz |
update firewall rules
Signed-off-by: Kenny Ballou <kballou@devnulllabs.io>
Diffstat (limited to 'eligos')
-rw-r--r-- | eligos/nftables-rules.nft | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/eligos/nftables-rules.nft b/eligos/nftables-rules.nft index adc8507..c26071e 100644 --- a/eligos/nftables-rules.nft +++ b/eligos/nftables-rules.nft @@ -13,6 +13,10 @@ table inet filter { tcp dport 8000 ip saddr 127.0.0.1/8 counter accept tcp dport 8384 ip saddr 127.0.0.1/8 counter accept tcp dport 8080 ip saddr { 127.0.0.1/8, 10.1.0.0/8 } counter accept + tcp dport 20048 ip saddr 10.0.0.0/8 counter accept + udp dport 20048 ip saddr 10.0.0.0/8 counter accept + udp dport 2049 ip saddr 10.0.0.0/8 counter accept + tcp dport 2049 ip saddr 10.0.0.0/8 counter accept tcp dport ssh counter accept counter } |