1 # Example VM firewall configuration
3 # VM specific firewall options
6 # disable/enable the whole thing
9 # disable/enable MAC address filter
16 # log dropped incoming connection
19 # disable log for outgoing connections
28 # specify nfqueue queues (optionnal)
35 #TYPE ACTION IFACE SOURCE DEST PROTO D-PORT S-PORT
38 IN SSH(ACCEPT) net0 # a comment
39 IN SSH(ACCEPT) net0 192.168.2.192 # only allow SSH from 192.168.2.192
40 IN SSH(ACCEPT) net0 10.0.0.1-10.0.0.10 #accept SSH for ip in range 10.0.0.1 to 10.0.0.10
41 IN SSH(ACCEPT) net0 10.0.0.1,10.0.0.2,10.0.0.3 #accept ssh for 10.0.0.1 or 10.0.0.2 or 10.0.0.3
42 IN SSH(ACCEPT) net0 +mynetgroup #accept ssh for netgroup mynetgroup
44 |IN SSH(ACCEPT) net0 # disabled rule
46 # add a security group