Alexander Eiblinger Posted July 28, 2021 Posted July 28, 2021 Hi, sorry, prop. a stupid question - but I was so far not figuring out the answer. I have a helios64 running - pretty standard installation, including openmediavault and docker, as described on the kobol help page. I realized that there are some firewall/iptables rules are set, as example: tester@helios64:/etc# sudo iptables -L Chain INPUT (policy DROP) target prot opt source destination ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED ACCEPT icmp -- anywhere anywhere state NEW,RELATED,ESTABLISHED ACCEPT tcp -- anywhere anywhere tcp dpt:http ACCEPT tcp -- anywhere anywhere tcp dpt:https ACCEPT tcp -- anywhere anywhere tcp dpt:8384 ACCEPT tcp -- anywhere anywhere tcp dpt:3128 ACCEPT tcp -- anywhere anywhere tcp dpt:1443 ACCEPT udp -- anywhere anywhere udp dpt:domain ACCEPT tcp -- anywhere anywhere tcp dpt:domain ACCEPT tcp -- anywhere anywhere tcp dpt:microsoft-ds ACCEPT tcp -- anywhere anywhere tcp dpt:netbios-ssn ACCEPT udp -- anywhere anywhere udp dpt:netbios-dgm ACCEPT udp -- anywhere anywhere udp dpt:netbios-ns ACCEPT tcp -- anywhere anywhere tcp dpt:ftp ACCEPT tcp -- anywhere anywhere tcp dpt:49152 ACCEPT tcp -- anywhere anywhere tcp dpt:22000 ACCEPT udp -- anywhere anywhere udp dpt:1900 Chain FORWARD (policy ACCEPT) target prot opt source destination DOCKER-USER all -- anywhere anywhere DOCKER-ISOLATION-STAGE-1 all -- anywhere anywhere ACCEPT all -- anywhere anywhere ctstate RELATED,ESTABLISHED DOCKER all -- anywhere anywhere ACCEPT all -- anywhere anywhere ACCEPT all -- anywhere anywhere ... What I was not able to figure out is, where these rules come from!? In openmediafault no firewall rules are set. I also was not able to find any iptables settings in /etc/network, etc. Anyone an idea where these rules are configured? And with which service they are setup? Thanks!
Werner Posted July 28, 2021 Posted July 28, 2021 2 hours ago, Alexander Eiblinger said: DOCKER-USER Docker?
Heisath Posted July 28, 2021 Posted July 28, 2021 Armbian has no default iptables rules configured. So all rules are from either Docker or OpenMediaVault.
Alexander Eiblinger Posted July 29, 2021 Author Posted July 29, 2021 Thanks! Digged a little bi deeper in - the rules are actually mostly from openmediavault, did not realize that there were some set up before! Thanks to both on you for pointing me in the right direction!
Recommended Posts