Update firewall config to avoid timeouts and avoid spamming logs
This commit is contained in:
Baptiste Jonglez
parent
c4e5ddb24b
commit
4bf7f9a76b
1 changed files with 6 additions and 0 deletions
|
|
@ -421,6 +421,12 @@ in
|
|||
cfg.wireguardPort
|
||||
];
|
||||
|
||||
# Don't spam logs with refused connections
|
||||
logRefusedConnections = false;
|
||||
|
||||
# Use REJECT instead of DROP, to avoid timeouts (e.g. when trying to connect to the wrong SSH port)
|
||||
rejectPackets = true;
|
||||
|
||||
# Allow specific hosts access to specific things in the cluster
|
||||
extraCommands = ''
|
||||
# Allow UDP packets comming from port 1900 from a local address,
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue