fix

2024-07-23 20:55:46 -06:00 · 2024-07-23 20:55:46 -06:00 · fc0d21c561
commit fc0d21c561
parent a3a6fc63fd
1 changed files with 7 additions and 0 deletions
--- a/firewall2.sh
+++ b/firewall2.sh
@ -11,6 +11,7 @@ SYNCTHING=(22000 8384 21027)
 NFS=(2049 111)
 JELLYFIN=(8096 1900 7359)
 MACHINES=(0.0.0.0)
+LIBVIRT_IP_ADDRESS=(192.168.122.0/24)
 ADMIN=(22 9090)
 #### NFT CONFIG ####
 NFT='/usr/sbin/nft'
@ -163,6 +164,11 @@ basic-security() {
 	$NFT add rule ip6 filter input icmpv6 type nd-router-advert $NFT_DROP
 }

+virtualization() {
+	$NFT insert rule filter input iif virbr0 $NFT_ACCEPT
+
+}
+
 admin() {
 	for i in "${ADMIN[@]}"; do
 		$NFT_TCP $i $NFT_ACCEPT
@ -268,6 +274,7 @@ start() {
 		basic-security
 	else
 		{
+			virtualization
 			syncthing
 			trust
 			kde-connect