Skip to content
  • Mike Hibler's avatar
    Linux firewall fixes inspired by Richard. · d54da568
    Mike Hibler authored
     * If firewall setup fails, don't fail completely open! Instead all full
       access to/from the firewall, but block all access to/from inside nodes.
     * Sort the rules by rule number so that user added rules get put in the
       correct place.
     * Fix the rules template for iptables so that user rules get inserted
       into an appropriate location.
     * Fix a bug in the anti-spoofing rules that would prevent any access from
       outside to the inside nodes.
    d54da568