mirror of
https://github.com/netblue30/firejail.git
synced 2026-05-23 14:12:22 -06:00
6181f75e3f
Make sure all files end with a newline Strip extra newlines and trailing whitespace from files
18 lines
612 B
Text
18 lines
612 B
Text
*filter
|
|
# test1
|
|
:INPUT DROP [0:0]
|
|
:FORWARD DROP [0:0]
|
|
:OUTPUT ACCEPT [0:0]
|
|
-A INPUT -i lo -j ACCEPT
|
|
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
|
|
# echo replay is handled by -m state RELATED/ESTABLISHED above
|
|
#-A INPUT -p icmp --icmp-type echo-reply -j ACCEPT
|
|
-A INPUT -p icmp --icmp-type destination-unreachable -j ACCEPT
|
|
-A INPUT -p icmp --icmp-type time-exceeded -j ACCEPT
|
|
-A INPUT -p icmp --icmp-type echo-request -j ACCEPT
|
|
# disable STUN
|
|
-A OUTPUT -p udp --dport 3478 -j DROP
|
|
-A OUTPUT -p udp --dport 3479 -j DROP
|
|
-A OUTPUT -p tcp --dport 3478 -j DROP
|
|
-A OUTPUT -p tcp --dport 3479 -j DROP
|
|
COMMIT
|