suzanne.soy/qubes-doc
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge branch 'reverse-nft-rule-checking' of https://github.com/Fenlly/qubes-doc into Fenlly-reverse-nft-rule-checking

Browse Source
This commit is contained in:
Andrew David Wong 2018-06-04 20:07:51 -05:00
commit 919df9b528
No known key found for this signature in database
GPG Key ID: 8CE137352A019A17
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
security/firewall.md
View File

@ -384,7 +384,7 @@ fi
# In Qubes OS R4 # In Qubes OS R4
# If not already present # If not already present
if nft -nn list table ip qubes-firewall | grep "tcp dport 443 ct state new"; then if ! nft -nn list table ip qubes-firewall | grep "tcp dport 443 ct state new"; then
# Add a filtering rule # Add a filtering rule
nft add rule ip qubes-firewall forward meta iifname eth0 ip saddr 192.168.x.0/24 ip daddr 10.137.0.y tcp dport 443 ct state new counter accept nft add rule ip qubes-firewall forward meta iifname eth0 ip saddr 192.168.x.0/24 ip daddr 10.137.0.y tcp dport 443 ct state new counter accept