From 5eaa1f61896b1c37a27180669b8adce50661d717 Mon Sep 17 00:00:00 2001 From: Mikael Andersson Date: Wed, 19 Feb 2025 12:16:01 +0100 Subject: [PATCH] Add missing ingress fw rule. --- .../overlay/etc/nftables/conf.d/501.nft | 1 + .../overlay/etc/nftables/conf.d/501.nft | 1 + .../overlay/etc/nftables/conf.d/501.nft | 1 + 3 files changed, 3 insertions(+) create mode 100644 internal-sto4-prod-k8sc-0.rut.sunet.se/overlay/etc/nftables/conf.d/501.nft create mode 100644 internal-sto4-prod-k8sc-1.rut.sunet.se/overlay/etc/nftables/conf.d/501.nft create mode 100644 internal-sto4-prod-k8sc-2.rut.sunet.se/overlay/etc/nftables/conf.d/501.nft diff --git a/internal-sto4-prod-k8sc-0.rut.sunet.se/overlay/etc/nftables/conf.d/501.nft b/internal-sto4-prod-k8sc-0.rut.sunet.se/overlay/etc/nftables/conf.d/501.nft new file mode 100644 index 0000000..5282f80 --- /dev/null +++ b/internal-sto4-prod-k8sc-0.rut.sunet.se/overlay/etc/nftables/conf.d/501.nft @@ -0,0 +1 @@ +add rule inet filter input tcp dport { 80, 443 , 30080, 30443} counter accept comment "nft_public" \ No newline at end of file diff --git a/internal-sto4-prod-k8sc-1.rut.sunet.se/overlay/etc/nftables/conf.d/501.nft b/internal-sto4-prod-k8sc-1.rut.sunet.se/overlay/etc/nftables/conf.d/501.nft new file mode 100644 index 0000000..5282f80 --- /dev/null +++ b/internal-sto4-prod-k8sc-1.rut.sunet.se/overlay/etc/nftables/conf.d/501.nft @@ -0,0 +1 @@ +add rule inet filter input tcp dport { 80, 443 , 30080, 30443} counter accept comment "nft_public" \ No newline at end of file diff --git a/internal-sto4-prod-k8sc-2.rut.sunet.se/overlay/etc/nftables/conf.d/501.nft b/internal-sto4-prod-k8sc-2.rut.sunet.se/overlay/etc/nftables/conf.d/501.nft new file mode 100644 index 0000000..5282f80 --- /dev/null +++ b/internal-sto4-prod-k8sc-2.rut.sunet.se/overlay/etc/nftables/conf.d/501.nft @@ -0,0 +1 @@ +add rule inet filter input tcp dport { 80, 443 , 30080, 30443} counter accept comment "nft_public" \ No newline at end of file