Firewall rules are dynamically loaded with jails #555
msimerson
announced in
Announcements
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
As of PR #547 , all newly provisioned jails have custom firewall rules that are dynamically loaded when the jail is and unloaded when the jail is. This makes it much easier to customize per-jail rules. It also delays loading firewall rules that have dependencies, such as a bastion jail that requires a VPN or other custom interface to be loaded before the firewall rules can be loaded.
See https://github.com/msimerson/Mail-Toaster-6/wiki/PF for more details.
Beta Was this translation helpful? Give feedback.
All reactions