Daniel Micay
|
c9dcf479fc
|
allow PowerDNS webserver on loopback for root
|
2023-02-14 01:19:19 -05:00 |
|
Daniel Micay
|
6c58739dc8
|
remove PowerDNS for unbound nftables allowlist
The unnecessary security polling has been disabled so it doesn't need
this anymore.
|
2022-09-10 18:11:58 -04:00 |
|
Daniel Micay
|
07dca7919d
|
reorder network allowlists for consistency
|
2022-08-10 11:13:31 -04:00 |
|
Daniel Micay
|
54b52a3655
|
use dedicated geoipupdate user
|
2022-07-26 23:09:06 -04:00 |
|
Daniel Micay
|
984d0f200f
|
nftables: implement loopback access control
|
2022-07-25 20:47:29 -04:00 |
|
Daniel Micay
|
ad6e998ec2
|
nftables: filter input service traffic by dst addr
|
2022-07-21 19:32:43 -04:00 |
|
Daniel Micay
|
fdf21af1ae
|
nftables: use notrack accept instead of notrack
|
2022-07-21 17:31:16 -04:00 |
|
Daniel Micay
|
f7da683012
|
nftables: simplify ICMP handling
|
2022-07-18 22:14:35 -04:00 |
|
Daniel Micay
|
32074453eb
|
nftables: use numeric port format
|
2022-06-30 07:02:34 -04:00 |
|
Daniel Micay
|
01f9274fc4
|
nftables: implement output filtering for loopback
|
2022-06-30 06:41:52 -04:00 |
|
Daniel Micay
|
e0ab41c4f4
|
nftables: friendlier output traffic filtering
|
2022-06-29 21:27:01 -04:00 |
|
Daniel Micay
|
3ca0c347c6
|
add baseline nftables configurations
|
2022-06-29 10:53:07 -04:00 |
|