Git-Mirrors/graphene-os-server-infrastructure
1
0
Fork 0
mirror of https://github.com/GrapheneOS/infrastructure.git synced 2024-09-27 19:15:43 +00:00
Code Issues Packages Projects Releases Wiki Activity

remove PowerDNS for unbound nftables allowlist

Browse Source 
The unnecessary security polling has been disabled so it doesn't need
this anymore.
This commit is contained in:
Daniel Micay 2022-09-10 18:11:58 -04:00
parent 9a69263f6b
commit 6c58739dc8
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
nftables-dns.conf
View File

@ -53,7 +53,7 @@ table inet filter {
chain output-internal {
skuid unbound meta l4proto {tcp, udp} th sport 53 th dport >= 1024 accept
skuid {chrony, powerdns, geoipupdate} meta l4proto {tcp, udp} th sport >= 1024 th dport 53 accept
skuid {chrony, geoipupdate} meta l4proto {tcp, udp} th sport >= 1024 th dport 53 accept
skuid != root counter goto output-reject
accept