Gitiles
Code Review Sign In
gerrit.opencord.org / vEG / 2a2df42a2f0e14ea9d329a03c38025ed6cae47c3 / . / xos / synchronizer / files / etc / ufw / after.rules
blob: 007585193b6f7aa803db0e54c61fcc4a86340e5d [file] [log] [blame]
Andrea Campanella2a2df422017-08-30 16:59:17 +0200[diff] [blame^]1# Copyright 2017-present Open Networking Foundation
2#
3# Licensed under the Apache License, Version 2.0 (the "License");
4# you may not use this file except in compliance with the License.
5# You may obtain a copy of the License at
6#
7# http://www.apache.org/licenses/LICENSE-2.0
8#
9# Unless required by applicable law or agreed to in writing, software
10# distributed under the License is distributed on an "AS IS" BASIS,
11# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
12# See the License for the specific language governing permissions and
13# limitations under the License.
Andrea Campanellaedfdbca2017-02-01 17:33:47 -0800[diff] [blame]14#
15# rules.input-after
16#
17# Rules that should be run after the ufw command line added rules. Custom
18# rules should be added to one of these chains:
19# ufw-after-input
20# ufw-after-output
21# ufw-after-forward
22#
23
24# Don't delete these required lines, otherwise there will be errors
25*filter
26:ufw-after-input - [0:0]
27:ufw-after-output - [0:0]
28:ufw-after-forward - [0:0]
29# End required lines
30
31# don't log noisy services by default
32-A ufw-after-input -p udp --dport 137 -j ufw-skip-to-policy-input
33-A ufw-after-input -p udp --dport 138 -j ufw-skip-to-policy-input
34-A ufw-after-input -p tcp --dport 139 -j ufw-skip-to-policy-input
35-A ufw-after-input -p tcp --dport 445 -j ufw-skip-to-policy-input
36-A ufw-after-input -p udp --dport 67 -j ufw-skip-to-policy-input
37-A ufw-after-input -p udp --dport 68 -j ufw-skip-to-policy-input
38
39# don't log noisy broadcast
40-A ufw-after-input -m addrtype --dst-type BROADCAST -j ufw-skip-to-policy-input
41
42# don't delete the 'COMMIT' line or these rules won't be processed
43COMMIT