This is an automated email from the git hooks/post-receive script.
arunisaac pushed a commit to branch master
in repository guix.
The following commit(s) were added to refs/heads/master by this push:
new ecbfa20 doc: Fix example iptables configuration.
ecbfa20 is described below
commit ecbfa206091574f913a1914447bad79206eff548
Author: Eric Brown <[email protected]>
AuthorDate: Sun May 30 22:00:52 2021 +0100
doc: Fix example iptables configuration.
* doc/guix.texi (Networking Services): Allow established and related
incoming
connections in example iptables configuration.
Signed-off-by: Arun Isaac <[email protected]>
---
doc/guix.texi | 2 ++
1 file changed, 2 insertions(+)
diff --git a/doc/guix.texi b/doc/guix.texi
index ed442d3..eb64518 100644
--- a/doc/guix.texi
+++ b/doc/guix.texi
@@ -16450,6 +16450,7 @@ configuration rejecting all incoming connections except
those to the ssh port
:INPUT ACCEPT
:FORWARD ACCEPT
:OUTPUT ACCEPT
+-A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
-A INPUT -p tcp --dport 22 -j ACCEPT
-A INPUT -j REJECT --reject-with icmp-port-unreachable
COMMIT
@@ -16458,6 +16459,7 @@ COMMIT
:INPUT ACCEPT
:FORWARD ACCEPT
:OUTPUT ACCEPT
+-A INPUT -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
-A INPUT -p tcp --dport 22 -j ACCEPT
-A INPUT -j REJECT --reject-with icmp6-port-unreachable
COMMIT
