Advertisement
Guest User

/etc/connman/firewall.conf

a guest
Jan 19th, 2020
103
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. # By default drop everything. RELATED and ESTABLISHED are allowed
  2. # to keep network operational and not disturb any connections that
  3. # have been established outbound. Similarly, to avoid connman DNS
  4. # resolving from breaking a rule for allowing all incoming on loopback
  5. # is added.
  6.  
  7. [General]
  8.  
  9. # IPv4 rules and policies.
  10.  
  11. IPv4.INPUT.RULES = -p udp -m multiport --ports 67:68 -j ACCEPT;-m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT; -i lo -j ACCEPT
  12. IPv4.INPUT.POLICY = DROP
  13.  
  14. # IPv6 rules and policies.
  15.  
  16. IPv6.INPUT.RULES = -p udp -m multiport --ports 546:547 -j ACCEPT; -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT; -i lo -j ACCEPT
  17. IPv6.INPUT.POLICY = DROP
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement