Git-Mirrors/graphene-os-server-infrastructure
1
0
Fork 0
mirror of https://github.com/GrapheneOS/infrastructure.git synced 2025-01-03 02:50:47 -05:00
Code Issues Packages Projects Releases Wiki Activity

reorder network allowlists for consistency

Browse Source
This commit is contained in:
Daniel Micay 2022-08-10 11:13:31 -04:00
parent afce4f2a51
commit 07dca7919d
6 changed files with 6 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
nftables-attestation.conf
View File

@ -44,7 +44,7 @@ table inet filter {
type filter hook output priority filter type filter hook output priority filter
oif lo goto output-internal oif lo goto output-internal
skuid != {root, systemd-network, chrony, unbound, http, attestation} counter goto output-reject skuid != {root, systemd-network, unbound, chrony, http, attestation} counter goto output-reject
} }
chain output-internal { chain output-internal {

2
nftables-discuss.conf
View File

@ -44,7 +44,7 @@ table inet filter {
type filter hook output priority filter type filter hook output priority filter
oif lo goto output-internal oif lo goto output-internal
skuid != {root, systemd-network, chrony, unbound, http, flarum, flarum-admin} counter goto output-reject skuid != {root, systemd-network, unbound, chrony, http, flarum, flarum-admin} counter goto output-reject
} }
chain output-internal { chain output-internal {

2
nftables-dns.conf
View File

@ -48,7 +48,7 @@ table inet filter {
type filter hook output priority filter type filter hook output priority filter
oif lo goto output-internal oif lo goto output-internal
skuid != {root, systemd-network, chrony, unbound, powerdns, geoipupdate} counter goto output-reject skuid != {root, systemd-network, unbound, chrony, powerdns, geoipupdate} counter goto output-reject
} }
chain output-internal { chain output-internal {

2
nftables-mail.conf
View File

@ -44,7 +44,7 @@ table inet filter {
type filter hook output priority filter type filter hook output priority filter
oif lo goto output-internal oif lo goto output-internal
skuid != {root, systemd-network, chrony, unbound, postfix, dovecot, dovenull} counter goto output-reject skuid != {root, systemd-network, unbound, chrony, postfix, dovecot, dovenull} counter goto output-reject
} }
chain output-internal { chain output-internal {

2
nftables-matrix.conf
View File

@ -44,7 +44,7 @@ table inet filter {
type filter hook output priority filter type filter hook output priority filter
oif lo goto output-internal oif lo goto output-internal
skuid != {root, systemd-network, chrony, unbound, http, synapse, matterbridge} counter goto output-reject skuid != {root, systemd-network, unbound, chrony, http, synapse, matterbridge} counter goto output-reject
} }
chain output-internal { chain output-internal {

2
nftables-web.conf
View File

@ -44,7 +44,7 @@ table inet filter {
type filter hook output priority filter type filter hook output priority filter
oif lo goto output-internal oif lo goto output-internal
skuid != {root, systemd-network, chrony, unbound, http} counter goto output-reject skuid != {root, systemd-network, unbound, chrony, http} counter goto output-reject
} }
chain output-internal { chain output-internal {