mirror of
https://github.com/mirage/qubes-mirage-firewall.git
synced 2024-12-27 16:19:24 -05:00
87df5bdcc0
Co-Authored-By: Mindy Preston <yomimono@users.noreply.github.com>
27 lines
1.2 KiB
Plaintext
27 lines
1.2 KiB
Plaintext
+--------------------+
|
|
| rules from QubesDB |
|
|
+--------------------+
|
|
^
|
|
if-not-in-nat | then check
|
|
|
|
|
+-----------+
|
|
| nat-table |
|
|
+-----------+
|
|
^
|
|
|checks
|
|
|
|
|
+------------+ +-----+----+
|
|
work <---->| +---->| firewall |<--------.
|
|
| | +-----+----+ |
|
|
| | | +----+---+
|
|
[...] <---->| client_net | | | uplink |<----> sys-net
|
|
| | v +--------+
|
|
| | +----------+ ^
|
|
personal <---->| |<----+ router +---------'
|
|
+------+-----+ +----------+
|
|
|
|
|
|monitors
|
|
v
|
|
XenStore
|
|
(dom0)
|