mirror of
https://code.forgejo.org/infrastructure/documentation
synced 2024-11-25 20:11:11 +00:00
allow 10.0.0.0/8 in the firewall
This commit is contained in:
parent
b5f7d949ab
commit
3f79d6d365
|
@ -70,6 +70,13 @@ https://robot.hetzner.com/server to only allow incoming ssh, http,
|
||||||
https requests for both IPv4 & IPv6. Each server has a "Firewall" tab
|
https requests for both IPv4 & IPv6. Each server has a "Firewall" tab
|
||||||
that provides control over this firewall.
|
that provides control over this firewall.
|
||||||
|
|
||||||
|
The firewall applies to the VLAN too. The 10.0.0.0/8 source address
|
||||||
|
must therefore be allowed explicitly for IPv4 and that must be the
|
||||||
|
first rule of the firewall.
|
||||||
|
|
||||||
|
A template "k8s" was defined that can be used for sharing the same
|
||||||
|
rules between multiple k8s nodes.
|
||||||
|
|
||||||
## nftables
|
## nftables
|
||||||
|
|
||||||
```sh
|
```sh
|
||||||
|
|
Loading…
Reference in a new issue