Qubes/core-agent-linux
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Merge remote-tracking branch 'qubesos/pr/38'

Browse Source 
* qubesos/pr/38:
  Reset iptables ACCEPT rule for updates proxy if service is running
This commit is contained in:
Marek Marczykowski-Górecki 2017-02-13 00:03:43 +01:00
commit 961455657d
No known key found for this signature in database
GPG Key ID: 063938BA42CFA724
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
network/qubes-firewall
View File

@ -51,6 +51,10 @@ while true; do
DISPLAY=:0 /usr/bin/notify-send -t 3000 "Firewall loading error ($(hostname))" "$OUT" || : DISPLAY=:0 /usr/bin/notify-send -t 3000 "Firewall loading error ($(hostname))" "$OUT" || :
fi fi
if [ `systemctl is-active qubes-updates-proxy` = "active" ]; then
iptables -I INPUT -i vif+ -p tcp --dport 8082 -j ACCEPT
fi
# Check if user didn't define some custom rules to be applied as well... # Check if user didn't define some custom rules to be applied as well...
[ -x /rw/config/qubes-firewall-user-script ] && /rw/config/qubes-firewall-user-script [ -x /rw/config/qubes-firewall-user-script ] && /rw/config/qubes-firewall-user-script
# XXX: Backward compatibility # XXX: Backward compatibility