mirror of
https://github.com/GrapheneOS/infrastructure.git
synced 2024-06-29 15:52:10 +00:00
allow PowerDNS webserver on loopback for root
This commit is contained in:
Daniel Micay
parent
7871fa2d51
commit
c9dcf479fc
|
|
@ -55,6 +55,8 @@ table inet filter {
|
|||
skuid unbound meta l4proto {tcp, udp} th sport 53 th dport >= 1024 accept
|
||||
skuid {chrony, geoipupdate} meta l4proto {tcp, udp} th sport >= 1024 th dport 53 accept
|
||||
|
||||
skuid powerdns meta l4proto tcp th sport 80 th dport >= 1024 accept
|
||||
|
||||
skuid != root counter goto output-reject
|
||||
accept
|
||||
}
|
||||
|
|
|
|||
Loading…
Reference in New Issue
Block a user