]> git.proxmox.com Git - pve-firewall.git/blame - example/cluster.fw
projects / pve-firewall.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
remove unneccessary iptables code
[pve-firewall.git] / example / cluster.fw
CommitLineData
c4a2e5ae
DM		 1[OPTIONS]
2
3enable: 1
4
5[RULES]
6
7IN SSH(ACCEPT) vmbr0
8
92e976b3
DM		 9[group group1]
10
11IN ACCEPT - - tcp 22 -
12OUT ACCEPT - - tcp 80 -
13OUT ACCEPT - - icmp - -
14
15[group group3]
16
17IN ACCEPT 10.0.0.1
18IN ACCEPT 10.0.0.2
19IN ACCEPT 10.0.0.2
20
34cdedfa
AD		 21
22#ipset hash:ip
23[ipgroup ipgroup1]
24
25192.168.0.1
26192.168.0.2
27192.168.0.3
28
29
30[ipgroup ipgroup2]
31
32192.168.0.3
33192.168.0.4
34
35#ipset hash:net
36[netgroup netgroup1]
37
38192.168.0.0/24
3910.0.0.0/8
40
Firewall test scripts