19 lines
622 B
Plaintext
19 lines
622 B
Plaintext
## Note that policy parsing stops at the first match,
|
|
## so adding anything below "$anyvm $anyvm action" line will have no effect
|
|
|
|
## Please use a single # to start your custom comments
|
|
|
|
# Upgrade all TemplateVMs through sys-whonix.
|
|
#$type:TemplateVM $default allow,target=sys-whonix
|
|
|
|
# Upgrade Whonix TemplateVMs through sys-whonix.
|
|
$tag:whonix-updatevm $default allow,target=sys-whonix
|
|
|
|
# Deny Whonix TemplateVMs using UpdatesProxy of any other VM.
|
|
$tag:whonix-updatevm $anyvm deny
|
|
|
|
# Default rule for all TemplateVMs - direct the connection to sys-net
|
|
$type:TemplateVM $default allow,target=sys-net
|
|
|
|
$anyvm $anyvm deny
|