The WebUI and CLI provide a simple interface to create, edit and remove firewall rules. All changes made through either interface will be effective immediately. It is therefore important that before the default policies are set to DROP that the required ACCEPT rules have been configured.
All defined rules will persist through a reboot. In case that a rule prevents access to the node, the rules can be adjusted through the local console port of the node.
The following rules must always be applied to a Nodegrid as they are required for a normal operation:
Source | Direction | Comments |
|---|---|---|
loopback | INBOUND | IPv4 |
loopback | OUTBOUND | IPv4 |
loopback | INBOUND | IPv6 |
loopback | OUTBOUND | IPv6 |
A list of commonly used Firewall Rules on a Nodegrid can be found in Firewall Rules for the Nodegrid platform.