allow synapse to connect to nginx via loopback

For an unknown reason, synapse occasionally tries to connect to
matrix.grapheneos.org which ends up being routed via the loopback
interface. For now, allow this to avoid rejected packets.
This commit is contained in:
Daniel Micay 2022-07-26 19:28:37 -04:00
parent 984d0f200f
commit 6081f9fa73

View File

@ -59,6 +59,7 @@ table inet filter {
skuid http tcp sport 443 tcp dport >= 1024 tcp dport != 8008 accept skuid http tcp sport 443 tcp dport >= 1024 tcp dport != 8008 accept
skuid matterbridge tcp sport >= 1024 tcp dport != 8008 tcp dport 443 accept skuid matterbridge tcp sport >= 1024 tcp dport != 8008 tcp dport 443 accept
skuid synapse tcp sport >= 1024 tcp dport != 8008 tcp dport 443 accept
skuid != root counter goto output-reject skuid != root counter goto output-reject
accept accept