me
/
guix
Archived
1
0
Fork 0
Code

doc: Fix example iptables configuration. 

* doc/guix.texi (Networking Services): Allow established and related incoming
connections in example iptables configuration.

Signed-off-by: Arun Isaac <arunisaac@systemreboot.net>
master
Eric Brown 2021-05-30 22:00:52 +01:00 committed by Arun Isaac
parent 9703a51048
commit ecbfa20609
No known key found for this signature in database
GPG Key ID: 2E25EE8B61802BB3
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
doc/guix.texi
View File

@ -16450,6 +16450,7 @@ configuration rejecting all incoming connections except those to the ssh port
:INPUT ACCEPT :INPUT ACCEPT
:FORWARD ACCEPT :FORWARD ACCEPT
:OUTPUT ACCEPT :OUTPUT ACCEPT
-A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
-A INPUT -p tcp --dport 22 -j ACCEPT -A INPUT -p tcp --dport 22 -j ACCEPT
-A INPUT -j REJECT --reject-with icmp-port-unreachable -A INPUT -j REJECT --reject-with icmp-port-unreachable
COMMIT COMMIT
@ -16458,6 +16459,7 @@ COMMIT
:INPUT ACCEPT :INPUT ACCEPT
:FORWARD ACCEPT :FORWARD ACCEPT
:OUTPUT ACCEPT :OUTPUT ACCEPT
-A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
-A INPUT -p tcp --dport 22 -j ACCEPT -A INPUT -p tcp --dport 22 -j ACCEPT
-A INPUT -j REJECT --reject-with icmp6-port-unreachable -A INPUT -j REJECT --reject-with icmp6-port-unreachable
COMMIT COMMIT