Merge remote-tracking branch 'prism/master'

author: tv <tv@krebsco.de> 2018-01-02 20:58:59 +0100
committer: tv <tv@krebsco.de> 2018-01-02 20:58:59 +0100
commit: 493984d97e6deaee3d7b358724e83c59bccb212d (patch)
tree: 691e019ae0b55d48a9681d9c26ae65e6c83d1d0f /krebs/3modules/iptables.nix
parent: 84fdbeba2ceee152a128f5e9013043c172c07ecf (diff)
parent: e48b4eb4606f6d0ec0b930016a53e7e7cfcbfb64 (diff)
1 files changed, 9 insertions, 0 deletions
diff --git a/krebs/3modules/iptables.nix b/krebs/3modules/iptables.nix
index d64ed86d..6298a05a 100644
--- a/krebs/3modules/iptables.nix
+++ b/krebs/3modules/iptables.nix
@@ -61,6 +61,15 @@ let
           };
         };
       })));
+      default = {
+        filter.INPUT.policy = "ACCEPT";
+        filter.FORWARD.policy = "ACCEPT";
+        filter.OUTPUT.policy = "ACCEPT";
+        nat.PREROUTING.policy = "ACCEPT";
+        nat.INPUT.policy = "ACCEPT";
+        nat.OUTPUT.policy = "ACCEPT";
+        nat.POSTROUTING.policy = "ACCEPT";
+      };
     };
   };
author	tv <tv@krebsco.de>	2018-01-02 20:58:59 +0100
committer	tv <tv@krebsco.de>	2018-01-02 20:58:59 +0100
commit	493984d97e6deaee3d7b358724e83c59bccb212d (patch)
tree	691e019ae0b55d48a9681d9c26ae65e6c83d1d0f /krebs/3modules/iptables.nix
parent	84fdbeba2ceee152a128f5e9013043c172c07ecf (diff)
parent	e48b4eb4606f6d0ec0b930016a53e7e7cfcbfb64 (diff)