FAQ | This is a LIVE service | Changelog

Skip to content
Snippets Groups Projects

Fix issue with firewall ordering

Merged Fix issue with firewall ordering
bugfix/ussuri/firewall-ordering into arcus/ussuri-staging
Merged Will Szumski requested to merge bugfix/ussuri/firewall-ordering into arcus/ussuri-staging

The issue was that the firewall rules were being inserted below a rule that dropped all traffic. Here is a snippet from iptables-save.

-A INPUT -j REJECT --reject-with icmp-host-prohibited
-A INPUT -j firewallgen_input

By always inserting this beginning of the chain, we ensure that the rules in this chain always take precedence.

Merge request reports

Loading
Loading

Activity

Filter activity
  • Approvals
  • Assignees & reviewers
  • Comments (from bots)
  • Comments (from users)
  • Commits & branches
  • Edits
  • Labels
  • Lock status
  • Mentions
  • Merge request status
  • Tracking
  • Loading
Please register or sign in to reply