mirror of
https://code.forgejo.org/infrastructure/documentation
synced 2024-12-22 12:53:53 +00:00
allow 10.0.0.0/8 in the firewall
This commit is contained in:
parent
b5f7d949ab
commit
3f79d6d365
|
@ -70,6 +70,13 @@ https://robot.hetzner.com/server to only allow incoming ssh, http,
|
|||
https requests for both IPv4 & IPv6. Each server has a "Firewall" tab
|
||||
that provides control over this firewall.
|
||||
|
||||
The firewall applies to the VLAN too. The 10.0.0.0/8 source address
|
||||
must therefore be allowed explicitly for IPv4 and that must be the
|
||||
first rule of the firewall.
|
||||
|
||||
A template "k8s" was defined that can be used for sharing the same
|
||||
rules between multiple k8s nodes.
|
||||
|
||||
## nftables
|
||||
|
||||
```sh
|
||||
|
|
Loading…
Reference in a new issue