File: 30_localhost.xml

package info (click to toggle)
pyroman 0.6.2-1.2
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid, trixie
  • size: 396 kB
  • sloc: python: 1,706; xml: 89; sh: 57; makefile: 5
file content (18 lines) | stat: -rw-r--r-- 982 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
 
<pyroman>
  <!-- rules for firewalling the firewall host itself. -->
  <!-- the hostname '*localhost*' is special: it will always be the current
  hosts hostname. This is important if you want to share configuration files
  over multiple hosts: if the value of the hostname attribute matches the
  machines hostname, these rules end up in the OUTPUT and INPUT chains of
  iptables; otherwise they are put into the FORWARD chains. -->
  <host name="localhost" hostname="*localhost*" ip="0.0.0.0/0 ::/0" iface="any" />
  <!-- no restriction on outgoing connections -->
  <allow client="localhost" server="ANY" />
  <!-- allow incoming connections to a few services -->
  <allow client="ANY" server="localhost" service="ssh mdns www ping" />
  <!-- to deny access to some service, use e.g.
  <reject server="localhost" service="8080/tcp" />
  -->
  <!-- allow incoming connections to unprivileged ports -->
  <allow client="ANY" server="localhost" service="unprivileged" />
</pyroman>