Skip to content

Commit

Permalink
add established and related state rule on fwd chain
Browse files Browse the repository at this point in the history
  • Loading branch information
@abhishek9686
abhishek9686 committed Dec 5, 2024
1 parent ca7154c commit e5f79f4
Showing 1 changed file with 14 additions and 0 deletions.
14 changes: 14 additions & 0 deletions firewall/iptables_linux.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -73,6 +73,20 @@ var (
table: defaultIpTable,
chain: iptableINChain,
},
{
rule: []string{"-i", ncutils.GetInterfaceName(), "-m", "conntrack",
"--ctstate", "ESTABLISHED,RELATED", "-m", "comment",
"--comment", netmakerSignature, "-j", "ACCEPT"},
table: defaultIpTable,
chain: iptableFWDChain,
},
{
rule: []string{"-o", ncutils.GetInterfaceName(), "-m", "conntrack",
"--ctstate", "ESTABLISHED,RELATED", "-m", "comment",
"--comment", netmakerSignature, "-j", "ACCEPT"},
table: defaultIpTable,
chain: iptableFWDChain,
},
{
rule: []string{"-i", ncutils.GetInterfaceName(), "-j", aclInputRulesChain,
"-m", "comment", "--comment", netmakerSignature},
Expand Down

0 comments on commit e5f79f4

Please sign in to comment.