Qubes/core-agent-linux
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
418 Commits 1 Branch 0 Tags 6.4 MiB
c11df42f86
Commit Graph

2 Commits

Author SHA1 Message Date
Marek Marczykowski
ae3092e741 Optimize iptables rules in NetVM 
Move "state RELATED,ESTABLISHED" rule to the beginning.
 2011-04-06 10:33:42 +02:00
Rafal Wojtczuk
c0f47663c8 Unify dom0 and netvm sysconfig/iptables 
Plus:
- dedicated chain for DNAT to nameservers
- prevent intervm networking. Can be conveniently overriden in necessary cases
by inserting ACCEPT clauses (per VM, probably) at the top of FORWARD
 2010-09-06 15:10:01 +02:00