1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
|
.. _firewall_rules:
Firewall Rules
==============
Receptor has the ability to accept, drop, or reject traffic based on any combination of the following:
- ``FromNode``
- ``ToNode``
- ``FromService``
- ``ToService``
Firewall rules are added under the ``node`` entry in a Receptor configuration file:
.. code-block:: yaml
# Accepts everything
node:
firewallrules:
- action: "accept"
.. code-block:: yaml
# Drops traffic from `foo` to `bar`'s control service
node:
firewallrules:
- action: "drop"
fromnode: "foo"
tonode: "bar"
toservice: "control"
.. code-block:: yaml
# Rejects traffic originating from nodes like abcb, adfb, etc
node:
firewallrules:
- action: "reject"
fromnode: "/a.*b/"
.. code-block:: yaml
# Rejects traffic destined for nodes like abcb, AdfB, etc
node:
firewallrules:
- action: "reject"
tonode: "/(?i)a.*b/"
|
