projects
/
pve-firewall.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
| inline |
side by side
fix README
[pve-firewall.git]
/
example
/
cluster.fw
diff --git
a/example/cluster.fw
b/example/cluster.fw
index 8a3e3b2bbe1705b37eaf38ca8f890b9d55f6dd36..e9a57eae1e8a5e03adc51b7480f23d8bcc663700 100644
(file)
--- a/
example/cluster.fw
+++ b/
example/cluster.fw
@@
-1,7
+1,12
@@
[OPTIONS]
+# enable firewall (cluster wide setting, default is disabled)
enable: 1
+# default policy for host rules
+policy_in: DROP
+policy_out: ACCEPT
+
[RULES]
IN SSH(ACCEPT) vmbr0