File: 30_localhost.xml

package info (click to toggle)
pyroman 0.5.0~alpha1-3
  • links: PTS, VCS
  • area: main
  • in suites: wheezy
  • size: 400 kB
  • sloc: python: 1,653; xml: 88; sh: 59; makefile: 2
file content (18 lines) | stat: -rw-r--r-- 977 bytes parent folder | download | duplicates (4) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
 
<pyroman>
  <!-- rules for firewalling the firewall host itself. -->
  <!-- the hostname '*localhost*' is special: it will always be the current
  hosts hostname. This is important if you want to share configuration files
  over multiple hosts: if the value of the hostname attribute matches the
  machines hostname, these rules end up in the OUTPUT and INPUT chains of
  iptables; otherwise they are put into the FORWARD chains. -->
  <host name="localhost" hostname="*localhost*" ip="0.0.0.0/0" iface="any" />
  <!-- no restriction on outgoing connections -->
  <allow client="localhost" server="ANY" />
  <!-- allow incoming connections to a few services -->
  <allow client="ANY" server="localhost" service="ssh mdns www ping" />
  <!-- to deny access to some service, use e.g.
  <reject server="localhost" service="8080/tcp" />
  -->
  <!-- allow incoming connections to unprivileged ports -->
  <allow client="ANY" server="localhost" service="unprivileged" />
</pyroman>