allowed loopback traffic

This commit is contained in:
celso 2024-12-12 22:23:05 -03:00
parent be8d249c29
commit baa554ffd0
1 changed files with 2 additions and 0 deletions

View File

@ -26,6 +26,7 @@ table ip filter {
type filter hook input priority filter; policy drop;
ct state invalid drop;
ct state {related,established} accept;
iifname "lo" accept;
tcp dport @allowed_tcp_ports accept;
udp dport @allowed_udp_ports_in accept;
}
@ -36,5 +37,6 @@ table ip filter {
chain out {
type filter hook output priority filter; policy drop;
udp dport @allowed_udp_ports_out accept;
oifname "lo" accept;
}
}