the-nine-worlds/ansible-roles
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update nftables to allow libvirt traffic

Browse Source
This commit is contained in:
Wojciech Kozlowski 2023-02-23 22:42:55 +01:00
parent 5d8a2e3f43
commit b22e1ba3d0
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
system/base/nftables/templates/nftables.conf.j2
View File

@ -10,6 +10,9 @@ table inet filter {
# Accept any localhost traffic. # Accept any localhost traffic.
iif lo accept; iif lo accept;
# Accept any libvirt traffic.
iifname virbr0 accept;
# Accept traffic originated from us. # Accept traffic originated from us.
ct state established,related accept; ct state established,related accept;